Port requirements for appliances

2024-12-04

To enable communication with appliances, you must open specific network ports.

Genetec Cloudlink to Security Center SaaS

For video, the following ports must be open for the associated domains. Opening these ports ensures that Genetec Cloudlink™ appliances can connect to cloud services, be managed, and stream video.


Outbound port	Endpoint domain	Port usage
UDP 123	Network Time Protocol (NTP) servers are selected from the following sources (highest priority to lowest priority): Manual NTP configuration in Edge OS (local device webpage). DHCP Default NTP servers: time1.google.com time2.google.com time3.google.com time4.google.com	Connection to an NTP server.
TCP 443	Cloudlink appliances communicate with the following domains: .azurecr.io .azure-devices.net .azure-devices-provisioning.net global.azure-devices-provisioning.net .cloudapp.azure.com .blob.core.windows.net .in.applicationinsights.azure.com *.genetec.cloud login.genetec.com eastus2-3.in.applicationinsights.azure.com eastus2.livediagnostics.monitor.azure.com	Connection to the cloud.
	Details for the Australia region: genetec-dm-hub-prod-eau-0.azure-devices.net edgeosprodeauappstore.azurecr.io edgeosprodeauappstore.australiaeast.data.azurecr.io prod0eaufwimages.blob.core.windows.net prod0eaudevicesdiags.blob.core.windows.net eastau.video.genetec.cloud australiaeast.tds.genetec.cloud tds1astleasthrz.blob.core.windows.net tds2astleasthrz.blob.core.windows.net tds3astleasthrz.blob.core.windows.net tds4astleasthrz.blob.core.windows.net tds5astleasthrz.blob.core.windows.net tds6astleasthrz.blob.core.windows.net tds7astleasthrz.blob.core.windows.net tds8astleasthrz.blob.core.windows.net auescsaas01.blob.core.windows.net auescsaas02.blob.core.windows.net auescsaas03.blob.core.windows.net auescsaas04.blob.core.windows.net auescsaas05.blob.core.windows.net auescsaas06.blob.core.windows.net auescsaas07.blob.core.windows.net auescsaas08.blob.core.windows.net auescsaas09.blob.core.windows.net auescsaas10.blob.core.windows.net auescsaas11.blob.core.windows.net auescsaas12.blob.core.windows.net auescsaas13.blob.core.windows.net auescsaas14.blob.core.windows.net auescsaas15.blob.core.windows.net auescsaas16.blob.core.windows.net
	Details for the Canada region: genetec-dm-hub-prod-cca-0.azure-devices.net edgeosprodccaappstore.azurecr.io edgeosprodccaappstore.canadacentral.data.azurecr.io prod0ccafwimages.blob.core.windows.net prod0ccadevicesdiags.blob.core.windows.net centralca.video.genetec.cloud cancentral.tds.genetec.cloud tds1cancentralhrz.blob.core.windows.net tds2cancentralhrz.blob.core.windows.net tds3cancentralhrz.blob.core.windows.net tds4cancentralhrz.blob.core.windows.net tds5cancentralhrz.blob.core.windows.net tds6cancentralhrz.blob.core.windows.net tds7cancentralhrz.blob.core.windows.net tds8cancentralhrz.blob.core.windows.net cacscsaas01.blob.core.windows.net cacscsaas02.blob.core.windows.net cacscsaas03.blob.core.windows.net cacscsaas04.blob.core.windows.net cacscsaas05.blob.core.windows.net cacscsaas06.blob.core.windows.net cacscsaas07.blob.core.windows.net cacscsaas08.blob.core.windows.net cacscsaas09.blob.core.windows.net cacscsaas10.blob.core.windows.net cacscsaas11.blob.core.windows.net cacscsaas12.blob.core.windows.net cacscsaas13.blob.core.windows.net cacscsaas14.blob.core.windows.net cacscsaas15.blob.core.windows.net cacscsaas16.blob.core.windows.net
	Details for the Europe region: edgeosprodweuappstore.azurecr.io edgeosprodweuappstore.westeurope.data.azurecr.io edgeosprodweuappstore.northeurope.data.azurecr.io prod0weudevicesdiags.blob.core.windows.net genetec-dm-hub-prod-weu-0.azure-devices.net westeu.video.genetec.cloud westeurope.tds.genetec.cloud tds1westeuhorizon.blob.core.windows.net tds2westeuhorizon.blob.core.windows.net tds3westeuhorizon.blob.core.windows.net tds4westeuhorizon.blob.core.windows.net tds5westeuhorizon.blob.core.windows.net tds6westeuhorizon.blob.core.windows.net tds7westeuhorizon.blob.core.windows.net tds8westeuhorizon.blob.core.windows.net weuscsaas01.blob.core.windows.net weuscsaas02.blob.core.windows.net weuscsaas03.blob.core.windows.net weuscsaas04.blob.core.windows.net weuscsaas05.blob.core.windows.net weuscsaas06.blob.core.windows.net weuscsaas07.blob.core.windows.net weuscsaas08.blob.core.windows.net weuscsaas09.blob.core.windows.net weuscsaas10.blob.core.windows.net weuscsaas11.blob.core.windows.net weuscsaas12.blob.core.windows.net weuscsaas13.blob.core.windows.net weuscsaas14.blob.core.windows.net weuscsaas15.blob.core.windows.net weuscsaas16.blob.core.windows.net
	Details for the US region: edgeosprodeus2appstore.azurecr.io edgeosprodeus2appstore.eastus2.data.azurecr.io edgeosprodeus2appstore.southcentralus.data.azurecr.io edgeosprodeus2appstore.westus2.data.azurecr.io genetec-dm-hub-prod-eus2-0.azure-devices.net prod0eus2fwimages.blob.core.windows.net prod0eus2devicesdiags.blob.core.windows.net eastus2.video.genetec.cloud eastus2.tds.genetec.cloud tds1eastus2horizon.blob.core.windows.net tds2eastus2horizon.blob.core.windows.net tds3eastus2horizon.blob.core.windows.net tds4eastus2horizon.blob.core.windows.net tds5eastus2horizon.blob.core.windows.net tds6eastus2horizon.blob.core.windows.net tds7eastus2horizon.blob.core.windows.net tds8eastus2horizon.blob.core.windows.net eus2scsaas01.blob.core.windows.net eus2scsaas02.blob.core.windows.net eus2scsaas03.blob.core.windows.net eus2scsaas04.blob.core.windows.net eus2scsaas05.blob.core.windows.net eus2scsaas06.blob.core.windows.net eus2scsaas07.blob.core.windows.net eus2scsaas08.blob.core.windows.net eus2scsaas09.blob.core.windows.net eus2scsaas10.blob.core.windows.net eus2scsaas11.blob.core.windows.net eus2scsaas12.blob.core.windows.net eus2scsaas13.blob.core.windows.net eus2scsaas14.blob.core.windows.net eus2scsaas15.blob.core.windows.net eus2scsaas16.blob.core.windows.net
TCP 1935	Important: Ensure that you include the Cloud Security Center Virtual Machine associated with your system: *.gsc-cloud.com in your allowlist.	Interactive Connectivity Establishment (ICE) TCP in Web Real-Time Communication (WebRTC) for live streaming
TCP 443 UDP 3478 TCP 3478	turn.video.geneteccloud.com stun.relay.metered.ca global.relay.metered.ca	Traversal Using Relays around NAT (TURN) server and Session Traversal Utilities for NAT (STUN) server for live video streaming
UDP 53	DNS servers are selected from the following sources (highest to lowest priority). Manual DNS configuration in Edge OS (local device webpage). DHCP Default DNS servers: 1.1.1.1 8.8.8.8 1.0.0.1 8.8.4.4	Connection to a DNS server.
ICMP Ping	8.8.8.8	Diagnostics to indicate if the appliance can reach a global, public endpoint.

Genetec Cloudlink to cameras

For video, the following ports must be open for local cameras. Opening these ports ensures that the Cloudlink can connect to the cameras, manage them, and stream video.


Inbound port	Outbound port	Port usage
	TCP 443 TCP 80	Camera connections HTTPS on port 443 is preferred. Cloudlink appliances only fall back to HTTP on port 80 if secure communication isn’t available.
	TCP 554	RTSP for video requests
	UDP 3702	Camera discovery requests on 239.255.255.250 (multicast)
UDP 10000 to 10599		Real-Time Transport Protocol (RTP) and Real-time Transport Control Protocol (RTCP) communication from cameras to the Cloudlink appliance.
UDP 20000		Camera discovery responses

Synergis Cloud Link appliances

For Synergis™ Cloud Link, the following ports must be open for the associated domains. Opening the ports ensures that the devices can connect to the cloud services, be managed, and ensures correct access control operations.


Outbound port	Endpoint domain	Port usage
TCP 443	The Synergis Cloud Link communicates with the following domains and URLs: .geneteccloud.com .servicebus.windows.net .blob.core.windows.net .global.azure-devices-provisioning.net *.azure-devices.net google.com	Connection to the cloud
	Domain details: `acaas-gateway-prod01.geneteccloud.com serbusnwskuumgkdlgi.servicebus.windows.net evhubnwskuumgkdlgi.servicebus.windows.net evhubbacknwskuumgkdlgi.servicebus.windows.net storsyncnwskuumgkdlgi.blob.core.windows.net storhealnwskuumgkdlgi.blob.core.windows.net storgatwnwskuumgkdlgi.blob.core.windows.net global.azure-devices-provisioning.net`
	Details for the Australia region: `iothub844650092.azure-devices.net acaas-gateway-australia01.geneteccloud.com acaas-gateway-australia01-telemetry.geneteccloud.com serbusd5ikjp5levj7i.servicebus.windows.net evhubd5ikjp5levj7i.servicebus.windows.net evhubbackd5ikjp5levj7i.servicebus.windows.net storsyncd5ikjp5levj7i.blob.core.windows.net storheald5ikjp5levj7i.blob.core.windows.net storgatwd5ikjp5levj7i.blob.core.windows.net`
	Details for the Canada region: `iothub1887217071.azure-devices.net acaas-gateway-canada01.geneteccloud.com acaas-gateway-canada01-telemetry.geneteccloud.com serbusbm4qutho3syfc.servicebus.windows.net evhubbm4qutho3syfc.servicebus.windows.net evhubbackbm4qutho3syfc.servicebus.windows.net storsyncbm4qutho3syfc.blob.core.windows.net storhealbm4qutho3syfc.blob.core.windows.net storgatwbm4qutho3syfc.blob.core.windows.net`
	Details for the Europe region: `iothub645286700.azure-devices.net acaas-gateway-europe01.geneteccloud.com acaas-gateway-europe01-telemetry.geneteccloud.com serbusmese6xxndjusg.servicebus.windows.net evhubmese6xxndjusg.servicebus.windows.net evhubbackmese6xxndjusg.servicebus.windows.net storsyncmese6xxndjusg.blob.core.windows.net storhealmese6xxndjusg.blob.core.windows.net storgatwmese6xxndjusg.blob.core.windows.net`
	Details for the US region: `iothub1914824792.azure-devices.net acaas-gateway-us01.geneteccloud.com acaas-gateway-us01-telemetry.geneteccloud.com serbusbrbjvsf44a7rk.servicebus.windows.net evhubbrbjvsf44a7rk.servicebus.windows.net evhubbackbrbjvsf44a7rk.servicebus.windows.net storsyncbrbjvsf44a7rk.blob.core.windows.net storhealbrbjvsf44a7rk.blob.core.windows.net storgatwbrbjvsf44a7rk.blob.core.windows.net`
UDP 123	Default: time.windows.com	Connection to a Network Time Protocol (NTP) server

Axis Powered by Genetec appliances

For Axis Powered by Genetec appliances, the following outbound ports must be open for the associated domains. Opening the ports ensures that the devices can connect to cloud services, be managed, and ensure correct access control operations.


Outbound port	Endpoint domain	Port usage
TCP 443	The Axis Powered by Genetec devices communicate with the following domains and URLs: .geneteccloud.com .servicebus.windows.net .blob.core.windows.net .global.azure-devices-provisioning.net .Azure-devices.net google.com .connect.axis.com *st.axis.com	Connection to the cloud
	Domain details: acaas-gateway-prod01.geneteccloud.com serbusnwskuumgkdlgi.servicebus.windows.net evhubnwskuumgkdlgi.servicebus.windows.net evhubbacknwskuumgkdlgi.servicebus.windows.net storsyncnwskuumgkdlgi.blob.core.windows.net storhealnwskuumgkdlgi.blob.core.windows.net storgatwnwskuumgkdlgi.blob.core.windows.net global.azure-devices-provisioning.net iothub1914824792.azure-devices.net cep.prod.flagsmith.connect.axis.com cep.otelcol.connect.axis.com eu.prod.otelcol.connect.axis.com appinsights.connect.axis.com prod.adm.connect.axis.com signaling.prod.webrtc.connect.axis.com onboardme.prod.oneclick.connect.axis.com
	Details for the Australia region: `iothub844650092.azure-devices.net acaas-gateway-australia01.geneteccloud.com acaas-gateway-australia01-telemetry.geneteccloud.com serbusd5ikjp5levj7i.servicebus.windows.net evhubd5ikjp5levj7i.servicebus.windows.net evhubbackd5ikjp5levj7i.servicebus.windows.net storsyncd5ikjp5levj7i.blob.core.windows.net storheald5ikjp5levj7i.blob.core.windows.net storgatwd5ikjp5levj7i.blob.core.windows.net`
	Details for the Canada region: `iothub1887217071.azure-devices.net acaas-gateway-canada01.geneteccloud.com acaas-gateway-canada01-telemetry.geneteccloud.com serbusbm4qutho3syfc.servicebus.windows.net evhubbm4qutho3syfc.servicebus.windows.net evhubbackbm4qutho3syfc.servicebus.windows.net storsyncbm4qutho3syfc.blob.core.windows.net storhealbm4qutho3syfc.blob.core.windows.net storgatwbm4qutho3syfc.blob.core.windows.net`
	Details for the Europe region: `iothub645286700.azure-devices.net acaas-gateway-europe01.geneteccloud.com acaas-gateway-europe01-telemetry.geneteccloud.com serbusmese6xxndjusg.servicebus.windows.net evhubmese6xxndjusg.servicebus.windows.net evhubbackmese6xxndjusg.servicebus.windows.net storsyncmese6xxndjusg.blob.core.windows.net storhealmese6xxndjusg.blob.core.windows.net storgatwmese6xxndjusg.blob.core.windows.net`
	Details for the US region: `iothub1914824792.azure-devices.net acaas-gateway-us01.geneteccloud.com acaas-gateway-us01-telemetry.geneteccloud.com serbusbrbjvsf44a7rk.servicebus.windows.net evhubbrbjvsf44a7rk.servicebus.windows.net evhubbackbrbjvsf44a7rk.servicebus.windows.net storsyncbrbjvsf44a7rk.blob.core.windows.net storhealbrbjvsf44a7rk.blob.core.windows.net storgatwbrbjvsf44a7rk.blob.core.windows.net`
UDP 123	ntp.pool.org	Connection to a Network Time Protocol (NTP) server