This guide outlines the system requirements and firewall configuration needed to install and use Media Shuttle in your organization.
Signiant SDCX Servers provide an endpoint for Media Shuttle transfers using on-premises storage, such as a local disk, NAS or a SAN.
To learn more about software-defined content exchange, see What is SDCX?
Note: All systems running SDCX Server software on Microsoft Windows require an English version of the operating system.
Signiant SDCX Servers support server virtualization platforms such as VMWare.
Desktop virtualization is not supported.
Media Shuttle clients and servers must support TLS 1.2 or higher, and be able to access public DNS in order to resolve Signiant domains.
If you are using NAS with a Signiant SDCX Server without a Windows domain, you must set up a local user account with administrative privileges with the same username and password as the NAS server.
For more information on NAS, see the Media Shuttle Deployment Guide.
The following ports are required to perform transfers:
| Protocol | Direction | Port Range | Change Type | Description |
| TCP | Inbound | 49221 | Network Firewall | Used for file transfer |
| UDP | Bidirectional | 49221-49421 | Network Firewall | Used for file transfer |
| TCP | Bidirectional | 50221 | Network Firewall | Used for file transfer |
| TCP | Outbound | 443 | Network Firewall | Used to connect to cloud services: Storage server to Amazon EC2 IP Ranges Storage server to Amazon CloudFront IP Ranges |
Signiant SDCX Servers use a range of local ports for monitoring, control, and data transfer functions. No other software can use these ports on your server when using Media Shuttle.
The following ports must not be used by any other local processes:
| Protocol | Direction | Port Range | Change Type | Description |
| HTTPS | Local | 8443 | Local Server | Local connection to storage server |
| TCP | Local | 8888 | Local Server | Local connection to storage server |
| UDP | Local | 50222-50421 | Local Server | Local connection to storage server |
| TCP | Local | 50443 | Local Server | Local connection to storage server |
| TCP | Local | 50080 | Local Server | Local connection to storage server |
| TCP | Local | 50081 | Local Server | Local connection to storage server |
| TCP | Local | 51221-51320 | Local Server | Local connection to storage server |
| TCP | Local | 61001-61003 | Local Server | Local connection to storage server |
Signiant SDCX Server Software is supported by additional services hosted by Signiant via signiant.com and mediashuttle.com, and are supported by additional Amazon AWS services at amazonaws.com.
Access to required domains can be established by opening outbound HTTPS to all IP addresses.
If outbound HTTPS access is restricted, ensure that the following wildcard domains can be reached:
*.signiant.com*.mediashuttle.com*.amazonaws.com*.awsglobalaccelerator.comIf your firewall is unable to support wildcard domains, allow access to the following hosts:
updates.signiant.comdevice-service.services.cloud.signiant.comserver-events.services.cloud.signiant.comprod-installer-useast1.services.cloud.signiant.comprod-installer-uswest2.services.cloud.signiant.commediashuttle.commscloud.mediashuttle.comupdates.mediashuttle.comlicense.mediashuttle.comportals.mediashuttle.coma2xy0445m8zinb.iot.us-east-1.amazonaws.coma2xy0445m8zinb.iot.us-west-2.amazonaws.comafe65da3736f118fa.awsglobalaccelerator.comMedia Shuttle supports Amazon S3 Standard, Microsoft Azure Standard Blob, and Google Cloud object storage.
Note: Media Shuttle supports all public Amazon S3 regions.
For more information, see Configuring Cloud Storage.
The Signiant App is a Windows and macOS application that allows you to accelerate content transfers through Media Shuttle, which is available as an automatic download from any of your Media Shuttle portals, or as a download for distribution before your organization starts using Media Shuttle.
Microsoft Windows
Note: An upcoming release of Media Shuttle will end support for Microsoft Internet Explorer 11. You must use a supported browser to continue using Media Shuttle. For more information see the End of Support announcement on Signiant Support.
Apple macOS
To transfer content, the Signiant App must have access through your firewall for application updates and to connect to your Signiant SDCX Servers or cloud storage locations, manage portal services, and receive application updates.
| Protocol | Port | Change Type | Target IP Address |
|---|---|---|---|
| TCP | 443 | Network Firewall | Amazon CloudFront IP Ranges |
| TCP/UDP | 49221 | Network Firewall | Media Shuttle Service for AWS S3 Media Shuttle Service for Azure Storage |
| UDP | 49221-49321 | Network Firewall | On-premises Signiant SDCX Server / relays |
| TCP | 49221 | Network Firewall | On-premises Signiant SDCX Server / relays |
Note: Firewalls must have reflexive ACLs enabled.
The Signiant App makes HTTPS connections to the following domains:
updates.signiant.com*.mediashuttle.com*.cloud.signiant.com*.pndsn.com*.pubnub.comSigniant uses PubNub as a messaging service as a fallback for websocket communication for the Signiant App, and to support app-less Media Shuttle transfers.
To ensure maximum connectivity and performance in app-less environments, the following IP ranges must be whitelisted for outbound connections to PubNub:
13.232.67.208/2934.223.51.128/2954.93.254.232/2954.236.3.168/2954.241.191.232/2954.250.252.48/2954.249.82.168/31