What your learners need to connect to Mursion Magic simulations.
This article is only for Mursion Magic simulations. If your company is going to use Zoom or Google Meet, you should read this article instead.
Supported Browsers
Please see our list of supported browsers here
Learner Tech Checklist
- Learners can review the Joining a Mursion Magic Simulation article.
- Confirm that all learners have access to a desktop or laptop computer with a stable internet connection. At this time mobile devices are not supported in Mursion Magic. For the best experience, you'll need to use a desktop or laptop.
- Confirm that all learners are able to authorize the use of their webcam and microphone.
- Note: Webcams and microphones cannot be in use by other applications during simulations. Virtual cameras such as Snap Camera are not supported and may need to be uninstalled.
- Generally speaking, we want to test the following protocols: Both TCP and UDP for audio/video communications. Please check the various types of network configurations for your employees before they attempt to connect to Mursion simulations. Some things to consider:
- Are learners joining your network from one centralized location like an office?
- Are centralized learners in multiple cohorts?
- If so, do the cohorts have different firewall configurations?
- Are learners joining from multiple locations with different firewall configurations?
- Are Learners joining your network via a VPN?
- If so, does the VPN have a different firewall configuration than non-VPN learners?
- Based on the above questions, please ensure that all the applicable VPN and firewall users have the below rules configured. We recommend having multiple learners (across the differing VPN and Firewall configurations if applicable) test the connection to ensure all learners will be able to access Mursion simulations successfully.
Test Your Connection: To verify that you can successfully connect to Mursion, click here for instructions on testing your network.
System-Level Checklist
We added a new domain to the HTTPS connections section in October 2024. Be sure to review this newly added domain and update your configurations accordingly.
Network and Firewall Settings
| Protocol | Ports | Destination | |
| UDP | 3478 | turn-west-001.mursion.com (IP address: 34.212.18.106) |
|
| TCP | 443, 3478 | turn-west-001.mursion.com (IP address: 34.212.18.106) |
|
| UDP | 3478 | turn-west-002.mursion.com (IP address: 52.39.110.64) |
|
| TCP | 443, 3478 | turn-west-002.mursion.com (IP address: 52.39.110.64) |
|
TCP  |
443 |
*.live-video.net |
|
| TCP |
443 |
IPv4 (download as txt file) |
|
| UDP |
3478 |
IPv4 (download as txt file)
|
|
| On-Demand | |||
| TCP | 443 |
*.livekit.cloud |
|
| UDP | 3478 |
*.host.livekit.cloud |
|
| TCP UDP |
7881 50000-60000 |
*.livekit.cloud |
|
| TCP UDP UDP |
443, 3478 443, 3478 49152-65535 |
IPv4 (download as txt file) |
|
WebRTC
-
-
Make sure that your organization's network does not block outbound and inbound traffic on the above ports and domains. Note: traffic on the above ports and domains will always be initiated from your organization's network - inbound traffic will only occur after an outbound request is initiated.
- Make sure that your organization's network does not block any WebRTC traffic to/from the destinations listed above. Some network filtering can actively block WebRTC traffic, even if the above ports are open.
- To obtain the best audio and video quality, we recommend allowing access to the UDP ports listed above.
-
ZScaler
-
- If your organization uses ZScaler the following items must be added to the SSL Inspection exemption list so that SSL inspection is bypassed:
- portal.mursion.com
- turn-west-001.mursion.com (IP address: 34.212.18.106)
- Note: both FQDN and IP address should be bypassed
- turn-west-002.mursion.com (IP address: 52.39.110.64)
- Note: both FQDN and IP address should be bypassed
- If your organization uses ZScaler the following items must be added to the SSL Inspection exemption list so that SSL inspection is bypassed:
-
- If these items are not SSL Inspection bypassed, connections may be dropped due to failed client SSL handshake which will cause learners to lose connection to their Magic simulation or the learner will see a black screen when joining their Mursion simulation.
WebSocket
-
- portal.mursion.com
- magictest-signaling.mursion.com
- edge.ivschat.us-west-2.amazonaws.com
- *.live-video.net
HTTPS
-
- *.mursion.com
- *.live-video.net
- portal.mursion.com
- ml3assetbundles.s3.us-west-2.amazonaws.com
- mursion-static-assets.s3.us-west-2.amazonaws.com
- mursioncloudvideosprod.s3.us-west-2.amazonaws.com
- fonts.googleapis.com
- fonts.gstatic.com
- app.launchdarkly.com
- clientstream.launchdarkly.com
- mursion.qualtrics.com
- siteintercept.qualtrics.com
- *.mixpanel.com
- *.mursion.com
Email Server
- Ensure that email with the following from addresses are allowed by your email server:
- no-reply@mursion.com
- scheduling@mursion.com
- Ensure links from the following domains are allowed by your email server:
- mursion.com
- sestrack.mursion.com
- *.mursion.com
- Note that many links included within Mursion emails may include automatic redirects. Please ensure your network and email server firewalls allow for URL redirects for mursion.com
- Ensure images from the following domains are allowed to be downloaded by your email server:
- mursion-static-assets.s3.us-west-2.amazonaws.com
- mursioncloudvideosprod.s3.us-west-2.amazonaws.com
To verify that your corporate network will not block access to your Mursion simulation, click here to test your connection.
Security Checklist
If your IT team needs to review our security documentation before a Mursion program launch. These documents may be helpful:
- SOC 3 Summary
- Mursion's Penetration Test Executive Summary
- Security One-Pager
- HECVAT for Higher Education Clients
- Mursion's Privacy Notice