LogMeIn support sites no longer support Microsoft's Internet Explorer (IE) browser. Please use a supported browser to ensure all features perform as they should (Chrome / FireFox / Edge).

The GoTo support site no longer supports Safari 15. Please upgrade your browser to Safari 16 (or newer) or switch to a supported browser such as Google Chrome, Mozilla Firefox, or Microsoft Edge.

Looking to add seats to your Rescue subscription or get a demo of Mobile Support or Camera Sharing? Request a quote.

We are currently experiencing an unplanned outage for this product. View Service Status
  • Support
  • Products

    Explore support by product

    GoTo Connect

    All-in-one phone, meeting and messaging software

    GoTo Meeting

    Video and audio meeting software

    GoTo Webinar

    All-in-one webinar and virtual events software

    GoTo Room

    Conference room hardware

    GoTo Training

    Online training software

    OpenVoice

    Audio conferencing software

    Grasshopper

    Lightweight virtual phone system

    join.me

    Video conferencing software

    LogMeIn Resolve

    IT management & support

    LogMeIn Resolve MDM

    Mobile device management

    LogMeIn Pro

    Remote device access

    LogMeIn Central

    Remote monitoring & management

    LogMeIn Rescue

    Remote IT support

    GoToMyPC

    Remote desktop access

    GoToAssist

    Remote support software

    Hamachi

    Hosted VPN service

    RemotelyAnywhere

    On-prem remote access solution
  • Community
  • Trainings
  • Service Status

  • LogMeIn Returns as GoTo's IT Portfolio Brand

    LogMeIn is back as the name behind our IT products.

    Read the full announcement.
    Want to try a download free option?

    Try the new web console experience!

    Rescue WebTC
  • Language selector icon Language selector icon
    • English
    • français
    • italiano
    • Deutsch
    • español
    • português
    • Nederlands
  • Contact Support
  • Service Status
  • User Avatar User Avatar
    • Support
    • Contact Support
    • Browse Products
    • Service Status
    • Community
    • Trainings
    • Sign in
    • User Avatar
    • My Account
    • Personal Info
    • Sign In & Security
    • Billing Center
    • https://link.goto.com/myaccount-billing
    • My GoTo Connect
    • My Meetings
    • My Webinars
    • My Trainings
    • My Conferences
    • My Resolutions
    • My Mobile Devices
    • My Sessions
    • My Sessions
    • My Incidents
    • Sign out
  • Administrator Content
  • Setup
  • Set up Administration Center Fundamentals
  • Allowlisting
product logo
Back button image Back
Back button image
product logo

Allowlisting and LogMeIn Rescue - non-enterprise customers

This article gives guidance to Rescue Administrators.

This document lists the required domains that must be allowlisted for LogMeIn Rescue to function properly. These domains enable core functionality, media traffic, and support services for non-enterprise customers.

Important: For information about SaaS products offered by GetGo, Inc., a subsidiary of GoTo, Inc., visit this page.

Required Domains
Warning: SSL inspection MUST be disabled for all whitelisted Rescue URLs to ensure proper functionality.
If you use Zscaler, follow these key steps:
  1. Access the Zscaler Admin Portal.
  2. Create a URL Category for Rescue domains.
  3. Bypass SSL inspection for this category.
  4. Configure firewall rules to allow required ports.
For detailed instructions see: Deploy LogMeIn Rescue within Zscaler environment.
Domains
Domain Description Port
*.turn.console.gotoassist.com TURN Server for next-gen media 15000/UDP and/or 443/TCP
Note: If the network doesn't support fallback to 443, UDP 15000 is required.
update-cdn.logmeinrescue.com Updates and external technician invites 443/TCP
translation.logmeinrescue.com Translation services 443/TCP
*.logmeinrescue.com Core functionality for non-enterprise customers 443/TCP
*.logmein-gateway.com Gateway DNS resolution DNS lookup only
Short URLs: *.logmein123.com, *.support.me, *.rescuemobile.com *.oty.com PIN request and ad-hoc applet download sites 443/TCP
*.remoteview.logmein.com Next-gen media traffic 3489/UDP or 443/TCP
Note: It is recommended to use wildcard rules whenever possible while allowlisting or blocking any GoTo services on your network as sub-domains of the domains listed above are included. Also, the client-to-host connection uses peer-to-peer connections, encrypted within a 256-bit AES tunnel. The services themselves communicate using port 443 (HTTPS/SSL) and port 80, so no additional ports need to be opened within a firewall.
Note: No TCP traffic passes through addresses marked as "DNS lookup only". The applet performs name resolution using customer DNS servers to determine the appropriate datacenter and gateway.

GoTo Admin Allowlisting Requirements for Billing Admins

The following allowlisting settings are required for Billing Admins only.

Domain Purpose URLs
*.goto.com GoTo Products Homepage
  • https://admin.goto.com
  • https://api.goto.com
  • https://feedback.goto.com
*.getgo.com Backend Services & APIs
  • https://iam.servers.getgo.com
  • https://commerce.servers.getgo.com
  • https://avatars.servers.getgo.com
Category URLs
Authentication & Admin
  • https://admin.logmeininc.com
  • https://authentication.logmeininc.com
Analytics & Monitoring
  • https://api.segment.io
  • https://cdn.segment.com
  • https://api-js.mixpanel.com
  • https://o173976.ingest.us.sentry.io
User Experience & Feedback
  • https://cdn.pendo.io
  • https://siteintercept.qualtrics.com
Communication
  • https://api.jive.com
Accessibility
  • https://cdn.disability.illinois.edu
Tip: To test whether network settings are blocking connection to GoTo Admin services, try accessing GoTo Admin outside of your company network.

IP Ranges

Use of IP ranges instead of domain names for the firewall configuration is discouraged unless absolutely necessary because our IP ranges and those of our provider networks need to be periodically audited and modified, creating additional maintenance for your network. These changes are necessary to continue to provide the maximum performance for our GoTo products. Maintenance and failover events within our infrastructure may cause you to connect to servers within any of the ranges.

If your firewall includes a content or application data scanning filter, this may cause a block or latency, which would be indicated in the log files for the filter. To address this problem, verify that the domains or IP ranges will not be scanned or filtered by specifying exception domains or IP ranges.

We do not recommend explicit IP allowlisting of GoTo ranges. If URL allowlisting is not feasible, refer to the list of GoTo IP addresses.

Limitations in case of using IP Ranges

The following features won't be able to use in case of using IP based allowlist since these are using dynamic IPs:

  • External technician invite: invited external technicians won't be able to reach one-time technician console to download. This applies to networks where the external technicians are located.
  • Auto-upgrade of Calling Card and Unattended endpoints won't be able to auto-upgrade. Manual upgrade and redeployment will be required.
Related Articles:
  • Allowlisting and LogMeIn Rescue - data center range in the European Union, non-enterprise customers
Article last updated: 15 April, 2025

Need more help?

Contact icon Contact support
Community icon Ask the Community
Training icon Attend trainings
Video icon Watch videos
  • Language selector icon Language selector icon
    • English
    • français
    • italiano
    • Deutsch
    • español
    • português
    • Nederlands
  • About Us
  • Terms of Service
  • Privacy Policy
  • Trademark
  • Do Not Sell or Share My Personal Info
  • Browse Products
  • Copyright © 2025 GoTo Group, Inc. All rights reserved

Collaboration Products

GoTo Connect

GoTo Meeting

GoTo Webinar

GoTo Training

join.me

Grasshopper

OpenVoice

Remote Solutions Products

GoTo Resolve

Rescue

GoToAssist

Access Products

Pro

Central

GoToMyPC