Securing Red5 Pro Autoscaling

Ports required for Red5 Pro Autoscaling

Stream Manager For Mobile Clients Only

Inbound Ports

Port Description Protocol
5080 default web access of Red5 Pro; communication with Nodes TCP
8554 default RTSP port TCP

Stream Manager Proxy For HTML5 SDK, WebRTC/Flash/HLS

Inbound Ports

Port Description Protocol
5080 default web access of Red5 Pro; communication with Nodes TCP
443 standard HTTPS port TCP
8081 websockets for WebRTC TCP
8083 secure websockets for WebRTC TCP

Stream Manager communication with Nodes

AutoscalePorts

Currently with Stream Manager cannot work with the private IP of instances because when a new node is launched, the Stream Manager receives the public address of the node. This information is received through the cloud platform's SDK. Not all platforms provide private IP of an instance on new launch. In addition, Stream Managers are configured using static IPs, as referred to in the node's autoscale configuration file so that it can report back to the Stream Manager. When the node checks in, Stream Manager cloudwatch receives the public IP automatically.

Nodes (Origins and Edges) For Mobile Clients Only

Inbound Ports

Port Description Protocol
5080 default web access of Red5 Pro; communication with Nodes TCP
1935 default Red5 Pro RTMP port; also used for clustering communication TCP
8554 default RTSP (mobile) port TCP

Nodes (Origins and Edges) For HTML5 SDK, WebRTC/Flash/HLS

Inbound Ports

Port Description Protocol
5080 default web access of Red5 Pro; communication with Nodes TCP
1935 default Red5 Pro RTMP port; also used for clustering communication TCP
6262 websockets for HLS** TCP
8081 websockets for WebRTC TCP
40000-65535 TURN/STUN/ICE port range UDP

** Required if you support HLS fallback

Outbound Ports

By default, with most hosting environments, all Outbound ports are open to all, and this is usually acceptable. However, if you wish to tighten security even further, you can restrict access to all of the above ports mentioned (TCP: 443, 1935, 5080, 6262, 8081, 8082; UDP: 40000-65535, to Anywhere), plus the MySQL port, 3306 and the default HTTP port, 80.