Sold by: Lynxroute
Deployed on AWS
Free Trial
AWS Free Tier
This product has charges associated with it for hardening, security configuration, and support.
RustDesk Server provides self-hosted hbbs (rendezvous) and hbbr (relay) components for running RustDesk without relying on public infrastructure. Ed25519 keypair generated per instance at first boot, both services run as non-root, and CIS Level 1 hardened Ubuntu 24.04 LTS base.
Configure your RustDesk clients with the server IP and public key - your remote desktop sessions never touch third-party infrastructure.
Overview
This is a repackaged software product wherein additional charges apply for hardening, security configuration, and support.
WHAT IS RUSTDESK SERVER
RustDesk is an open-source remote desktop application. This AMI provides the self-hosted server components: hbbs (ID/rendezvous server) and hbbr (relay server). Together they allow your RustDesk clients to connect and relay sessions without using the public RustDesk infrastructure.
All RustDesk sessions are end-to-end encrypted. The relay server only passes encrypted traffic - it never sees session content.
WHY SELF-HOST YOUR REMOTE DESKTOP RELAY
Using the public RustDesk infrastructure means your connection metadata (who connects to whom, when, from where) passes through third-party servers. For regulated industries, GDPR compliance, or corporate security policies, a self-hosted relay is the only fully private option.
Self-hosted also provides lower latency by placing the relay in the same AWS region as your instances.
ENHANCED SECURITY OUT OF THE BOX
Running hbbs and hbbr requires correct port configuration and keypair management. This AMI generates the Ed25519 keypair automatically at first boot, saves the connection info to a credentials file, and runs both services as a dedicated non-root system user.
WHAT THIS AMI ADDS
Security hardening:
- Ed25519 keypair generated per instance at first boot - unique, never shared
- Both hbbs and hbbr run as dedicated non-root system user
- UFW firewall - only required ports open (21115, 21116 TCP+UDP, 21117)
- fail2ban - SSH brute-force protection
- AppArmor - mandatory access control
OS hardening (CIS Level 1):
- CIS Ubuntu 24.04 LTS Level 1 benchmark applied via ansible-lockdown
- auditd - system call auditing
- SSH hardening - PasswordAuthentication disabled, key-only access
- Kernel hardening - SYN cookies, ASLR, rp_filter, TCP BBR
- IMDSv2 enforced - SSRF protection
Compliance artifacts (inside the AMI):
- SBOM - CycloneDX 1.6 software bill of materials at /etc/lynxroute/sbom.json
- CIS Conformance Report - OpenSCAP HTML report at /etc/lynxroute/cis-report.html
- Tailored CIS profile at /usr/share/doc/lynxroute/CIS_TAILORED_PROFILE.md
Quick Start:
- Launch instance (t3.small recommended)
- Open Security Group - allow ports 21115, 21116 TCP+UDP, 21117 TCP from 0.0.0.0/0
- SSH: ssh -i key.pem ubuntu@<PUBLIC_IP>
- Read credentials: sudo cat /root/rustdesk-server-credentials.txt
- In RustDesk client: Settings - Network - ID/Relay Server: <PUBLIC_IP>, Key:
Server public key and connection info saved to /root/rustdesk-server-credentials.txt at first boot.
Highlights
- RustDesk Server self-hosted: Ed25519 keypair generated per instance at first boot, both hbbs and hbbr in one AMI - your remote desktop sessions never touch public RustDesk infrastructure.
- CIS Level 1 hardened Ubuntu 24.04 LTS: auditd, fail2ban, AppArmor, SSH key-only, IMDSv2 enforced, SBOM and CIS Conformance Report included for compliance teams.
- End-to-end encrypted sessions: the relay server only passes encrypted traffic - session content is never visible to the relay. AGPL-3.0 license, fully auditable.
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Ubuntu 24.04
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product free for 5 days according to the free trial terms set by the vendor. Usage-based pricing is in effect for usage beyond the free trial terms. Your free trial gets automatically converted to a paid subscription when the trial ends, but may be canceled any time before that.
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
If you are an AWS Free Tier customer with a free plan, you are eligible to subscribe to this offer. You can use free credits to cover the cost of eligible AWS infrastructure. See AWS Free Tier for more details. If you created an AWS account before July 15th, 2025, and qualify for the Legacy AWS Free Tier, Amazon EC2 charges for Micro instances are free for up to 750 hours per month. See Legacy AWS Free Tier for more details.
Dimension | Cost/hour |
|---|---|
t3.small Recommended | $0.02 |
t3.micro | $0.01 |
t3.medium | $0.02 |
Vendor refund policy
We do not offer refunds for this product. AWS infrastructure charges (EC2, EBS, data transfer) are billed separately by AWS and are not refundable by us.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Version 1.1.15 - Initial release (April 2026)
- RustDesk Server 1.1.15 on Ubuntu 24.04 LTS (hbbs + hbbr)
- CIS Level 1 hardening applied (ansible-lockdown/UBUNTU24-CIS)
- Ed25519 keypair generated per instance at first boot
- Both services run as dedicated non-root system user
- UFW firewall pre-configured (ports 22, 21115, 21116 TCP+UDP, 21117 only)
- fail2ban, auditd, AppArmor pre-configured
- SBOM (CycloneDX 1.6) at /etc/lynxroute/sbom.json
- CIS Conformance Report (OpenSCAP) at /etc/lynxroute/cis-report.html
- IMDSv2 enforced
Additional details
Usage instructions
- Launch instance (t3.small recommended)
- Open Security Group - ports 21115, 21116 TCP+UDP, 21117 TCP from 0.0.0.0/0
- SSH: ssh -i key.pem ubuntu@<PUBLIC_IP>
- Read credentials: sudo cat /root/rustdesk-server-credentials.txt
- In RustDesk client: Settings - Network - ID/Relay Server: set IP and key
Resources
Vendor resources
Support
Vendor support
Visit us online: https://lynxroute.com For RustDesk Server documentation: https://rustdesk.com/docs/en/self-host/ For RustDesk upstream issues (bugs, features, client behavior): https://github.com/rustdesk/rustdesk/issues
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
This is a repackaged AMI product to instantly deploy RustDesk: pre-configured, cost-effective all-in-one solution for enabling remote desktop access and control of computers or servers. No DevOps hassle. The perfect alternative to costly solutions such as TeamViewer, AnyDesk and RemotePC.
RustDesk® Server based on Windows Server 2025 DC is a pre-configured image designed for businesses seeking a secure, self-hosted remote desktop solution. Charges apply for support, maintenance, and pre-configuration, ensuring seamless deployment while meeting enterprise security and performance standards.
A powerful dual-suite for secure remote desktop access and enterprise file collaboration, pre-configured on a hardened CentOS 9 environment with support by ThinkCloud.
This product has charges associated with it for seller support. This is open source software, which is repackaged by Hanwei. The additional cost is applicable to the extended support of 24-hour response time.This AMI contains CentOS Stream 9(with Rust) and includes support.
Customer reviews
No customer reviews yet
Be the first to review this product . We've partnered with PeerSpot to gather customer feedback. You can share your experience by writing or recording a review, or scheduling a call with a PeerSpot analyst.