The purpose of this document is to outline the network requirements for the Cleanroom Simulator solution. The document is aimed at IT personnel and contains the following sections:

Solution Architecture

  1. Customer Environment
    This represents the Workstation at the customer’s site.
  2. Innerspace Cloud Services
    Consists of multiple webservices which are hosted in Amazon AWS, Microsoft Azure Cloud, Heroku, MongoDB and Bomgar Cloud.
  3. Customer LMS
    This represents the Learning Management System from the Customer which is either hosted in a private or public cloud.

The graphic below illustrates the solution architecture.

Ports and Firewalls IT Requirements

Whitelisting

Host configuration required for the services

Service Endpoint Port
Microsoft Intune

Device Management

Required for authentication:

Requirements for Intune device management:
https://docs.microsoft.com/en-us/intune/fundamentals/intune-endpoints#access-for-managed-devices

Requirements for Win32 app deployment:
https://docs.microsoft.com/en-us/intune/fundamentals/intune-endpoints#network-requirements-for-powershell-scripts-and-win32-apps

Requirements for Windows Push Notifications:
https://docs.microsoft.com/de-de/windows/uwp/design/shell/tiles-and-notifications/firewall-allowlist-config

 443
Innerspace Application
Insights
Analytics
metrics.innerspace.at 443
Bomgar Cloud
Remote Control
innerspace.bomgarcloud.com 443
Documentation 443

Simulator Hub

  • https://hub-admin-v2.innerspace.at/
  • https://hub-v2.innerspace.at
  • https://innerspace-applications.s3.eu-central-1.amazonaws.com/
  • https://innerspace-uploads.s3-eu-central-1.amazonaws.com/
  • https://hub-admin-v3.innerspace.at
  • https://hub-v3.innerspace.at
  • https://hub-v3-3.innerspace.at
  • https://hub-v3-4.innerspace.at
  • https://innerspace-applications.s3.eu-central-1.amazonaws.com/
443

Make sure the TLS/SSL certificate, used by the proxy server for HTTPS proxying, is trusted by the Cleanroom Simulator VR station.

Hardware Requirements

  • The following section only applies if the applications are installed on a customer provided Simulator Workstation.
  • Hardware requirements may vary in future releases due to updates of functionality.
  • Proper operation can only be guaranteed with the hardware provided by Innerspace.
  • Cleanroom Simulator Workstation (minimum requirements)

    • Processor: Intel i7, 8th generation
    • Mainboard: VR Ready
      • One PCI-e slot is required for HTC VIVE wireless adapter
    • Graphic card: GEFORCE RTX 3080 Ti
    • RAM: min. 32 GB DDR4-3200
    • Hard disk: min. 256 GB SSD
    • Monitor, keyboard and mouse
  • VR equipment

    • HTC VIVE Pro
      • 2 × Base Stations
      • 2 × controllers
      • 1 × HMD
    • HTC VIVE wireless adapter

Network Requirements

  • Bandwidth: Down ⬇️ min. 30 MBit/s, Up ⬆️ min. 10 MBit/s
  • Daily usage: < 100 MB / training session
  • Updates: < 5 GB / module & system update – usually monthly

Firewall settings for Bomgar client

Internet security software such as software firewalls must not block BeyondTrust executable files from downloading. Some examples of software firewalls include McAfee SecurityNorton Security, and Zone Alarm. To avoid connection issues, configure the firewall settings to allow the following executables, wherein {uid} is a unique identifier consisting of letter and numbers:

  • bomgar-scc-{uid}.exe

  • bomgar-scc.exe
  • bomgar-pac-{uid}.exe
  • bomgar-pac.exe
  • bomgar-pec-{uid}.exe
  • bomgar-pec.exe