How does Jump Desktop Connect create a connection between computers?
Jump Desktop Connect uses an open source, widely deployed technology called WebRTC create connections behind NATs and firewalls. When you try to connect, Jump Desktop Connect will use our cloud infrastructure to bootstrap a direct connection between your devices. If a direct connection can not be established, Jump Desktop Connect will use one of our global relays to connect to the machine.
How can I mass deploy Jump Desktop Connect to computers?
We recommend using Jump Desktop for Teams and the preconfigured installers. See our Adding Computers To Your Team Guide.
For non-Teams users see our non-Teams mass deployment guide for Jump Desktop Connect.
How do I allow Jump Desktop Connect to connect to your cloud infrastructure?
Make sure to allow the following hosts on your firewall:
Server Name | Ports | Protocol | Comment |
neuron.jumpdesktop.com | 443 | TCP | Required. |
api.jumpdesktop.com | 443 | TCP | Required. |
app.jumpdesktop.com | 443 | TCP | Recommended. Access to web dashboard. |
mirror.jumpdesktop.com | 443 | TCP | Recommended. For downloading updates. |
turn.jumpdesktop.com | ALL | TCP, UDP | Required for indirect or relayed connections. You can ignore this if you have direct networking line of sight between devices or you're using your on relay server. |
*.amazontrust.c |
80 | TCP | Optional. Required for SSL CRL checking. |
beta-neuron.jumpdesktop.com |
443 | TCP | Optional. Required only if you are testing beta builds. |
beta-api.jumpdesktop.com | 443 | TCP | Optional. Required only if you are testing beta builds. |
Important note: Our servers are behind load balancers and public IP addresses may change.
For best performance a direct connection needs to be established between computers and UDP packets need to allowed to flow through your network / VPN / firewall.
macOS Gatekeeper and certificate validation servers
If you have macOS's Gatekeeper feature enabled on macOS (enabled by default) your environment may also need access to Apple's certificate servers to make sure apps by 3rd party developers are allowed to run on the system. Here is a list of servers that you should allow through:
Server Name | Ports | Protocol |
certs.apple.com | 80, 443 | TCP |
ocsp.apple.com | 80, 443 | TCP |
ocsp2.apple.com | 80, 443 | TCP |
crl.apple.com | 80 | TCP |
Which ports does Jump Desktop Connect use?
Jump Desktop Connect uses TCP ports 80 and 443 to connect to our cloud infrastructure.
When a user tries to connect to a computer, Jump Desktop Connect will try to establish a direct connection between devices by using UDP on ports starting at 35384 through 35484. If Jump can't create a direct connection, it will fall back to using one of our global relay services via UDP and TCP on ports 80 and 443.
Important: The connection is always encrypted end to end using STUN, DTLS, TLS, SRTP. Our relay servers can not decrypt the connection data between your devices.
How do I configure proxy settings for Jump Desktop Connect?
Jump Desktop Connect supports HTTPS and SOCKS5 proxies. It will automatically try to discovery proxy settings when it starts up.
To manually configure proxy settings, open up Jump Desktop Connect -> Settings -> Network and set your proxy information.
Is connecting over a VPN supported?
Yes.
When users try to connect to a computer, Jump will automatically try to use the VPN interface to establish a direct connection between computers. For best performance make sure UDP packets are allowed between machines on ports 35384-35484.
If it can't establish a direct connection via the VPN it may fallback to using the closest relay server which may affect performance.
Can I use Jump Desktop Connect on computers without internet access?
Yes. You can use the Cloudless Fluid feature to connect directly to machines without internet access and without any dependencies on our cloud infrastructure.
Comments
0 comments
Please sign in to leave a comment.