We currently use the Torizon cloud remote access feature to access our products remotely in case of issues, which normally works well.
However, the RAC connection now runs via an outgoing connection to ras.torizon.io, port 2222, which causes problems for us sometimes. Some of our customers deploy the device in a network with strict access control, where outbound 2222 connections are blocked.
My suggestion is: Maybe the outbound connection could use port 443 instead of 2222? That port is usually allowed in such networks, making it a more general solution. AFAICS port 443 is not currently used on ras.torizon.io.
I realize that this not trivial to change (especially wrt documentation and/or existing setups that might have explicit whitelists, so maybe it should be configurable somehow?) and will need be done carefully, but I hope you’ll take this suggestion into consideration. Thanks!
Greetings @matthijs,
Thank you for sharing your request and use-case with us. We have had some similar requests in the past. Basically asking for a way to use another port with remote-access.
I guess the most generic solution would be to have remote-access use 2222 by default as it is now. But then have an option/mechanism that allows users to overwrite the default behavior and select another port to be used instead. Would this be suitable for your use-case?
Of course I’ll need to bring this request to our team and it needs to be discussed and priortized appropriately. So I can’t guarantee you anything at the moment other than I will bring it up internally for discussion.
Best Regards,
Jeremias
Yes, that sounds like a good approach for us. I can imagine customization happens via a custom image, or some server-side config (per-device and/or globally for the entire account). All of these would probably work for us, though per-device would give the most flexibility.
Thanks!
All of these would probably work for us, though per-device would give the most flexibility.
Thank you for clarifying this specific detail. I’ll bring this up for discussion internally as I said. We’ll try to inform you on this thread if there are any further updates regarding this request.
Best Regards,
Jeremias
