Port requirements for appliances

2024-09-06

To enable communication with appliances, you must open specific network ports.

Genetec Cloudlink 310 to Security Center SaaS

For Genetec Cloudlink™ video, the following ports must be open for the associated domains. Opening the ports ensures that the devices can connect to cloud services, be managed, and stream video.


Outbound port	Endpoint domain	Port usage
UDP 123	Network Time Protocol (NTP) servers are selected from the following sources (highest priority to lowest priority): Manual NTP configuration in Genetec Cloudlink DHCP Default NTP servers: time1.google.com time2.google.com time3.google.com time4.google.com	Connection to an NTP server.
TCP 443	Genetec Cloudlink communicates with the following domains: .azurecr.io .azure-devices.net .azure-devices-provisioning.net global.azure-devices-provisioning.net .cloudapp.azure.com .blob.core.windows.net .in.applicationinsights.azure.com *.genetec.cloud login.genetec.com eastus2-3.in.applicationinsights.azure.com eastus2.livediagnostics.monitor.azure.com	Connection to the cloud.
	Details for the Australia region: genetec-dm-hub-prod-eau-0.azure-devices.net edgeosprodeauappstore.azurecr.io edgeosprodeauappstore.australiaeast.data.azurecr.io prod0eaufwimages.blob.core.windows.net prod0eaudevicesdiags.blob.core.windows.net eastau.video.genetec.cloud australiaeast.tds.genetec.cloud tds1astleasthrz.blob.core.windows.net tds2astleasthrz.blob.core.windows.net tds3astleasthrz.blob.core.windows.net tds4astleasthrz.blob.core.windows.net tds5astleasthrz.blob.core.windows.net tds6astleasthrz.blob.core.windows.net tds7astleasthrz.blob.core.windows.net tds8astleasthrz.blob.core.windows.net auescsaas01.blob.core.windows.net auescsaas02.blob.core.windows.net auescsaas03.blob.core.windows.net auescsaas04.blob.core.windows.net auescsaas05.blob.core.windows.net auescsaas06.blob.core.windows.net auescsaas07.blob.core.windows.net auescsaas08.blob.core.windows.net auescsaas09.blob.core.windows.net auescsaas10.blob.core.windows.net auescsaas11.blob.core.windows.net auescsaas12.blob.core.windows.net auescsaas13.blob.core.windows.net auescsaas14.blob.core.windows.net auescsaas15.blob.core.windows.net auescsaas16.blob.core.windows.net
	Details for the Canada region: genetec-dm-hub-prod-cca-0.azure-devices.net edgeosprodccaappstore.azurecr.io edgeosprodccaappstore.canadacentral.data.azurecr.io prod0ccafwimages.blob.core.windows.net prod0ccadevicesdiags.blob.core.windows.net centralca.video.genetec.cloud cancentral.tds.genetec.cloud tds1cancentralhrz.blob.core.windows.net tds2cancentralhrz.blob.core.windows.net tds3cancentralhrz.blob.core.windows.net tds4cancentralhrz.blob.core.windows.net tds5cancentralhrz.blob.core.windows.net tds6cancentralhrz.blob.core.windows.net tds7cancentralhrz.blob.core.windows.net tds8cancentralhrz.blob.core.windows.net cacscsaas01.blob.core.windows.net cacscsaas02.blob.core.windows.net cacscsaas03.blob.core.windows.net cacscsaas04.blob.core.windows.net cacscsaas05.blob.core.windows.net cacscsaas06.blob.core.windows.net cacscsaas07.blob.core.windows.net cacscsaas08.blob.core.windows.net cacscsaas09.blob.core.windows.net cacscsaas10.blob.core.windows.net cacscsaas11.blob.core.windows.net cacscsaas12.blob.core.windows.net cacscsaas13.blob.core.windows.net cacscsaas14.blob.core.windows.net cacscsaas15.blob.core.windows.net cacscsaas16.blob.core.windows.net
	Details for the Europe region: edgeosprodweuappstore.azurecr.io edgeosprodweuappstore.westeurope.data.azurecr.io edgeosprodweuappstore.northeurope.data.azurecr.io prod0weudevicesdiags.blob.core.windows.net genetec-dm-hub-prod-weu-0.azure-devices.net westeu.video.genetec.cloud westeurope.tds.genetec.cloud tds1westeuhorizon.blob.core.windows.net tds2westeuhorizon.blob.core.windows.net tds3westeuhorizon.blob.core.windows.net tds4westeuhorizon.blob.core.windows.net tds5westeuhorizon.blob.core.windows.net tds6westeuhorizon.blob.core.windows.net tds7westeuhorizon.blob.core.windows.net tds8westeuhorizon.blob.core.windows.net weuscsaas01.blob.core.windows.net weuscsaas02.blob.core.windows.net weuscsaas03.blob.core.windows.net weuscsaas04.blob.core.windows.net weuscsaas05.blob.core.windows.net weuscsaas06.blob.core.windows.net weuscsaas07.blob.core.windows.net weuscsaas08.blob.core.windows.net weuscsaas09.blob.core.windows.net weuscsaas10.blob.core.windows.net weuscsaas11.blob.core.windows.net weuscsaas12.blob.core.windows.net weuscsaas13.blob.core.windows.net weuscsaas14.blob.core.windows.net weuscsaas15.blob.core.windows.net weuscsaas16.blob.core.windows.net
	Details for the US region: edgeosprodeus2appstore.azurecr.io edgeosprodeus2appstore.eastus2.data.azurecr.io edgeosprodeus2appstore.southcentralus.data.azurecr.io edgeosprodeus2appstore.westus2.data.azurecr.io genetec-dm-hub-prod-eus2-0.azure-devices.net prod0eus2fwimages.blob.core.windows.net prod0eus2devicesdiags.blob.core.windows.net eastus2.video.genetec.cloud eastus2.tds.genetec.cloud tds1eastus2horizon.blob.core.windows.net tds2eastus2horizon.blob.core.windows.net tds3eastus2horizon.blob.core.windows.net tds4eastus2horizon.blob.core.windows.net tds5eastus2horizon.blob.core.windows.net tds6eastus2horizon.blob.core.windows.net tds7eastus2horizon.blob.core.windows.net tds8eastus2horizon.blob.core.windows.net eus2scsaas01.blob.core.windows.net eus2scsaas02.blob.core.windows.net eus2scsaas03.blob.core.windows.net eus2scsaas04.blob.core.windows.net eus2scsaas05.blob.core.windows.net eus2scsaas06.blob.core.windows.net eus2scsaas07.blob.core.windows.net eus2scsaas08.blob.core.windows.net eus2scsaas09.blob.core.windows.net eus2scsaas10.blob.core.windows.net eus2scsaas11.blob.core.windows.net eus2scsaas12.blob.core.windows.net eus2scsaas13.blob.core.windows.net eus2scsaas14.blob.core.windows.net eus2scsaas15.blob.core.windows.net eus2scsaas16.blob.core.windows.net
TCP 1935	Important: Ensure that you include the Cloud Security Center Virtual Machine associated with your system: *.gsc-cloud.com in your allowlist.	Interactive Connectivity Establishment (ICE) TCP in Web Real-Time Communication (WebRTC) for live streaming
TCP 443 UDP 3478 TCP 3478	turn.video.geneteccloud.com stun.relay.metered.ca global.relay.metered.ca	Traversal Using Relays around NAT (TURN) server and Session Traversal Utilities for NAT (STUN) server for live video streaming
UDP 53	DNS servers are selected from the following sources (highest to lowest priority). Manual DNS configuration in the Edge OS (local device webpage). DHCP Default DNS servers: 1.1.1.1 8.8.8.8 1.0.0.1 8.8.4.4	Connection to a DNS server.
ICMP Ping	8.8.8.8	Diagnostics to indicate if the appliance can reach a global, public endpoint.

Genetec Cloudlink 310 to cameras

For Genetec Cloudlink video, the following ports must be open towards the on-premises local cameras. Opening the ports ensures that the Cloudlink can connect to those cameras, manage them, and stream video.


Inbound port	Outbound port	Port usage
	TCP 443 TCP 80	Camera connections HTTPS on port 443 is preferred. Genetec Cloudlink only falls back to HTTP on port 80 if secure communication isn’t available.
	TCP 554	RTSP for video requests
	UDP 3702	Camera discovery requests on 239.255.255.250 (multicast)
UDP 10000 to 10599		Real-Time Transport Protocol (RTP) and Real-time Transport Control Protocol (RTCP) communication from cameras to the Genetec Cloudlink™ 310 unit
UDP 20000		Camera discovery responses

Synergis Cloud Link appliances

For Synergis™ Cloud Link, the following ports must be open for the associated domains. Opening the ports ensures that the devices can connect to the cloud services, be managed, and ensures correct access control operations.


Outbound port	Endpoint domain	Port usage
TCP 443	The Synergis Cloud Link communicates with the following domains and URLs: .geneteccloud.com .servicebus.windows.net .blob.core.windows.net .global.azure-devices-provisioning.net *.azure-devices.net google.com	Connection to the cloud
	Domain details: `acaas-gateway-prod01.geneteccloud.com serbusnwskuumgkdlgi.servicebus.windows.net evhubnwskuumgkdlgi.servicebus.windows.net evhubbacknwskuumgkdlgi.servicebus.windows.net storsyncnwskuumgkdlgi.blob.core.windows.net storhealnwskuumgkdlgi.blob.core.windows.net storgatwnwskuumgkdlgi.blob.core.windows.net global.azure-devices-provisioning.net`
	Details for the Australia region: `iothub844650092.azure-devices.net google.com`
	Details for the Canada region: `iothub1887217071.azure-devices.net`
	Details for the Europe region: `iothub645286700.azure-devices.net`
	Details for the US region: `iothub1914824792.azure-devices.net`
UDP 123	Default: time.windows.com	Connection to a Network Time Protocol (NTP) server

Axis Powered by Genetec appliances

For Axis Powered by Genetec appliances, the following outbound ports must be open for the associated domains. Opening the ports ensures that the devices can connect to cloud services, be managed, and ensure correct access control operations.

Outbound port Endpoint domain Port usage

TCP 443

Outbound port	Endpoint domain	Port usage
TCP 443	The Axes Powered by Genetec devices communicate with the following domains and URLs: .geneteccloud.com .servicebus.windows.net .blob.core.windows.net .global.azure-devices-provisioning.net .Azure-devices.net google.com .connect.axis.com *st.axis.com	Connection to the cloud
Details: acaas-gateway-prod01.geneteccloud.com serbusnwskuumgkdlgi.servicebus.windows.net evhubnwskuumgkdlgi.servicebus.windows.net evhubbacknwskuumgkdlgi.servicebus.windows.net storsyncnwskuumgkdlgi.blob.core.windows.net storhealnwskuumgkdlgi.blob.core.windows.net storgatwnwskuumgkdlgi.blob.core.windows.net global.azure-devices-provisioning.net iothub1914824792.azure-devices.net google.com cep.prod.flagsmith.connect.axis.com cep.otelcol.connect.axis.com eu.prod.otelcol.connect.axis.com appinsights.connect.axis.com prod.adm.connect.axis.com signaling.prod.webrtc.connect.axis.com onboardme.prod.oneclick.connect.axis.com
UDP 123	ntp.pool.org	Connection to a Network Time Protocol (NTP) server

The Axes Powered by Genetec devices communicate with the following domains and URLs:

*.geneteccloud.com

*.servicebus.windows.net

*.blob.core.windows.net

*.global.azure-devices-provisioning.net

*.Azure-devices.net

google.com

*.connect.axis.com

*st.axis.com

Connection to the cloud

Details:


acaas-gateway-prod01.geneteccloud.com  
serbusnwskuumgkdlgi.servicebus.windows.net
evhubnwskuumgkdlgi.servicebus.windows.net
evhubbacknwskuumgkdlgi.servicebus.windows.net
storsyncnwskuumgkdlgi.blob.core.windows.net
storhealnwskuumgkdlgi.blob.core.windows.net
storgatwnwskuumgkdlgi.blob.core.windows.net
global.azure-devices-provisioning.net
iothub1914824792.azure-devices.net
google.com

cep.prod.flagsmith.connect.axis.com       
cep.otelcol.connect.axis.com
eu.prod.otelcol.connect.axis.com          
appinsights.connect.axis.com
prod.adm.connect.axis.com                 
signaling.prod.webrtc.connect.axis.com    
onboardme.prod.oneclick.connect.axis.com

UDP 123 ntp.pool.org Connection to a Network Time Protocol (NTP) server