The remote location needs to have outgoing UDP enabled from ports 5959 to 5970.
As the device side daemon is communicating to our servers, from the remote firewall's perspective, the device initiates the conversation and so you don't need to have any external ports explicitly opened.
The address and port you get point at our proxy servers, which handle making the connection.