This document provides IP addresses, host names, ports, and other important media and networking information for the Bluestream Health platform.
Bluestream Connection Information
Firewall Settings:
These are the IP addresses and host names for STUN/TURN Servers:
34.203.254.0 - 34.203.254.255
54.172.60.0 - 54.172.61.255
3.235.111.128 - 3.235.111.255
34.203.250.0 - 34.203.251.255
34.216.110.128 - 34.216.110.159
54.244.51.0 - 54.244.51.255
44.234.69.0 - 44.234.69.127
52.21.39.99
52.5.42.233
18.213.190.24
us1.stun.twilio.com
us1.turn.twilio.com
us2.stun.twilio.com
us2.turn.twilio.com
us-east.turn.bluestreamhealth.com
us-east.stun.bluestreamhealth.com
Ports typically recommended:
TCP 443
TCP 3478
UDP 3478
TCP 5349
Additional Ports for maximum compatibility (atypical to cause issues if closed):
UDP 10,000-60,000
Bluestream Settings
STUN/TURN Mode recommended: Allow both STUN/TURN
This allows users outside a strict firewall to talk directly to the other party without being
behind a TURN server. Also for certain internal network routes a local connection can be made without leaving the network. More information on STUN:
https://www.dls.net/voip-best-practices-stun-implementation-in-voip-environment/
Allow Global Relay servers: OFF
This enables relay servers located outside the US (Singapore, Japan, Ireland, India, Germany,
Brazil, Australia). It is not recommended if there is no need for international calls. IP Address ranges for these servers can be provided upon request.
Device Configuration
Windows/Mac: Latest version of chrome is recommended.
Android Phones: Latest version of Android using Google Chrome is recommended.
iPhones: Latest version of iOS using the Safari Browser
Sleep Mode: Ensure sleep mode does not activate while within video calls – by default this is not an issue on most devices.
Connectivity Considerations
Minimum Connection Speed (both up/down): 500kbps
Recommended bandwidth available to device (both up/down): 2000kbps
Note: VPN use is discouraged due to latency and bandwidth availability considerations. VPNs are capable of running video if configured correctly and allot enough bandwidth.
Access Point Handoff: Mobile WIFI devices should be tested for hopping access points to ensure video connection not lost during jump.
WIFI dead spots: WIFI survey in the area of use is recommended to ensure no dead spots or weak signals occur in specific locations.
Latency/Jitter: In addition to low bandwidth jitter can cause video quality degradation even in scenarios with ample bandwidth.
Bluestream Connection Information
Bluestream attempts to find the best possible connection between two endpoints using a method known as Trickle-Ice. It locates connection candidates based on STUN trying to pierce the NAT to allow a direct connection. Bluestream will query a set of TURN servers to act as relays if that fails. If both sides of a connection cannot connect directly it is possible to have two TURN servers – one for each party.
Connection candidates are rated based on latency and bandwidth and the best fit will be used.
Communications are encrypted using DTLS 1.2 (analogous to TLS 1.2).
Figure 1 below outlines the possible connection pathways and typical ports.
Fig. 1
API integration IP Whitelists
This is a list of our server IPs used for outbound API requests, some customers whitelist our IPs and need to be notified of changes. These are not IPs for typical client access such as firewall for video access, these are predominately only for integrations with close partners.
Notifications should go with their technical teams in charge of API relations.
Currently in active or semi-active use:
52.21.39.99
52.4.5.94
52.5.42.233
52.87.74.25
54.87.238.20
52.20.5.229
50.17.27.13
3.94.241.1
18.214.117.194
34.196.145.124
18.205.70.175
18.209.45.186
Reserved for future servers, may be put into use at any time without notice:
52.20.183.160
35.170.117.87
34.231.210.119