コンテンツへスキップ

新着 近日公開予定:自社の車両に質問して回答を得られる――AI向けMCPサーバー。 詳細はこちら →

技術紹介

How Remote.It makes secure connections

A global control plane, a tiny outbound-only agent, and a direct peer-to-peer tunnel — so you can reach any device without opening a port.

建築

Three parts, one private path.

Remote.It brokers trust in the cloud, but your data never flows through it. The connection is direct and encrypted end-to-end.

01
Remote.it クラウド

A global SaaS control plane in AWS that authenticates every request and brokers connections. It knows who is allowed to connect — never your traffic.

02
ターゲット

A ~500 KB agent on each device advertises specific services — SSH, HTTPS, a database — for authorized initiators to reach. Outbound-only, with no inbound ports.

03
イニシエーター

The desktop app, CLI, mobile app, or browser an authorized user or script connects from. Your application just sees localhost.

How it works

Four steps to a direct tunnel.

01
Maintain the path

Each target sends a small UDP packet outbound about every two minutes to keep its NAT mapping alive — the same technique that punches through CGNAT, 5G, and Starlink.

02
Prove intent

An initiator authenticates through Remote.It Cloud and signals which service it wants. Authorization is evaluated against your policies before anything connects.

03
Exchange coordinates

The target answers with UDP so both peers learn how to reach each other directly — no port forwarding, no public IP, nothing exposed.

04
Open the tunnel

A direct, end-to-end-encrypted peer-to-peer tunnel forms. Traffic flows device-to-device and Remote.It steps out of the path.

Connection types

However the network is shaped, it connects.

Peer-to-peer

A direct encrypted tunnel between initiator and target — the default, lowest-latency path.

Proxy

When a direct path is blocked, traffic routes through a proxy in Remote.It Cloud so the connection still succeeds.

Bastion / jump

Reach a target through another Remote.It-enabled device on its network — a jump host without the exposed jump host.

LAN sharing

Share a service to other initiators on the same local network, without each one installing an agent.

~500 KB
Agent footprint on each target
5959–5970
Outbound UDP ports used
15+
Registered patents
0
開いている受信ポート

すべてのマシンにリーチする準備はできていますか?

ビジネスを支える機器への安全なアクセス権を、わずか数分でチームに提供しましょう。無料で始められ、クレジットカードも不要、ポートを開放する必要もありません。

記事を検索