Port requirements for direct-to-cloud cameras

2025-12-16Last updated

To enable communication between direct-to-cloud (D2C) cameras and Security Center SaaS, you must open specific network ports.

US datacenters

The following network ports must be open for systems hosted in US datacenters.

Outbound port Endpoint domain Manufacturer Port usage
UDP 53 {AnyEndpointDomain} All Connection to a DNS server.
TCP 443 Recommended:

*.genetec.cloud

*.genetec.com

Current service endpoints:

login.genetec.com

eastus2.video.genetec.cloud

eastus2.tds.genetec.cloud

 All Connection for authenticating and managing cameras.
TCP 554 Recommended:

*.genetec.cloud

Current service endpoint:

rtsp.eastus2.video.genetec.cloud

 Video Connection for RTSP streaming.
TCP 443 
eus2scsaas01.blob.core.windows.net
eus2scsaas02.blob.core.windows.net
eus2scsaas03.blob.core.windows.net
eus2scsaas04.blob.core.windows.net
eus2scsaas05.blob.core.windows.net
eus2scsaas06.blob.core.windows.net
eus2scsaas07.blob.core.windows.net
eus2scsaas08.blob.core.windows.net
eus2scsaas09.blob.core.windows.net
eus2scsaas10.blob.core.windows.net
eus2scsaas11.blob.core.windows.net
eus2scsaas12.blob.core.windows.net
eus2scsaas13.blob.core.windows.net
eus2scsaas14.blob.core.windows.net
eus2scsaas15.blob.core.windows.net
eus2scsaas16.blob.core.windows.net
 All Endpoints for video recording and video playback that support load balancing and resiliency.
TCP 1935

UDP 1935
Important:
Ensure that you include the Cloud Security Center Virtual Machine associated with your system in your allowlist.

Recommended:

*.gsc-cloud.com

Current service endpoint:

{YourClientSpecificSCVirtualMachines}.gsc-cloud.com

 All Interactive Connectivity Establishment (ICE) TCP in Web Real-Time Communication (WebRTC) for live streaming.
UDP 3478

TCP 3478

UDP 443

TCP 443

UDP 80

TCP 80

 turn.video.geneteccloud.com

stun.relay.metered.ca

global.relay.metered.ca

 All Traversal Using Relays around NAT (TURN) server and Session Traversal Utilities for NAT (STUN) servers for live WebRTC video streaming.
UDP 123 pool.ntp.org Axis Connection to an NTP server.
TCP 443 Recommended:

*.connect.axis.com

*-st.axis.com

s3-ats-migration-test.s3.eu-west-3.amazonaws.com

Current service endpoints:

cep.prod.flagsmith.connect.axis.com       
cep.otelcol.connect.axis.com
eu.prod.otelcol.connect.axis.com          
appinsights.connect.axis.com
prod.adm.connect.axis.com                 
signaling.prod.webrtc.connect.axis.com    
onboardme.prod.oneclick.connect.axis.com  

dispatchus1-st.axis.com                   
dispatchse1-st.axis.com                   
dispatchse2-st.axis.com                   
dispatchjp1-st.axis.com                   
dispatcher-st.axis.com
 Axis Connection for managing Axis cameras in Security Center SaaS.
TCP 42000 dm201.cbs.boschsecurity.com

dm443.cbs.boschsecurity.com

dm161.cbs.boschsecurity.com

dm144.cbs.boschsecurity.com

 Bosch Connection to the cloud.
TCP 443 api.remote.boschsecurity.com Bosch Connection to remote portal.
TCP 80 http://36.mcg.escrypt.com/crl Bosch Certificate Revocation List (CRL).

Canadian datacenters

The following network ports must be open for systems hosted in Canadian datacenters.

Outbound port Endpoint domain Manufacturer Port usage
UDP 53 {AnyEndpointDomain} All Connection to a DNS server.
TCP 443 Recommended:

*.genetec.cloud

*.genetec.com

Current service endpoints:

login.genetec.com

centralca.video.genetec.cloud

cancentral.tds.genetec.cloud

 All Connection for authenticating and managing cameras.
TCP 554 Recommended:

*.genetec.cloud

Current service endpoint:

rtsp.centralca.video.genetec.cloud

 Video Connection for RTSP streaming.
TCP 443 
cacscsaas01.blob.core.windows.net
cacscsaas02.blob.core.windows.net
cacscsaas03.blob.core.windows.net
cacscsaas04.blob.core.windows.net
cacscsaas05.blob.core.windows.net
cacscsaas06.blob.core.windows.net
cacscsaas07.blob.core.windows.net
cacscsaas08.blob.core.windows.net
cacscsaas09.blob.core.windows.net
cacscsaas10.blob.core.windows.net
cacscsaas11.blob.core.windows.net
cacscsaas12.blob.core.windows.net
cacscsaas13.blob.core.windows.net
cacscsaas14.blob.core.windows.net
cacscsaas15.blob.core.windows.net
cacscsaas16.blob.core.windows.net
 All Endpoints for video recording and video playback that support load balancing and resiliency.
TCP 1935

UDP 1935
Important:
Ensure that you include the Cloud Security Center Virtual Machine associated with your system in your allowlist.

Recommended:

*.gsc-cloud.com

Current service endpoint:

{YourClientSpecificSCVirtualMachines}.gsc-cloud.com

 All Interactive Connectivity Establishment (ICE) TCP in Web Real-Time Communication (WebRTC) for live streaming.
UDP 3478

TCP 3478

UDP 443

TCP 443

UDP 80

TCP 80

 turn.video.geneteccloud.com

stun.relay.metered.ca

global.relay.metered.ca

 All Traversal Using Relays around NAT (TURN) server and Session Traversal Utilities for NAT (STUN) servers for live WebRTC video streaming.
UDP 123 pool.ntp.org Axis Connection to an NTP server.
TCP 443 Recommended:

*.connect.axis.com

*-st.axis.com

s3-ats-migration-test.s3.eu-west-3.amazonaws.com

Current service endpoints:

cep.prod.flagsmith.connect.axis.com       
cep.otelcol.connect.axis.com
eu.prod.otelcol.connect.axis.com          
appinsights.connect.axis.com
prod.adm.connect.axis.com                 
signaling.prod.webrtc.connect.axis.com    
onboardme.prod.oneclick.connect.axis.com  

dispatchus1-st.axis.com                   
dispatchse1-st.axis.com                   
dispatchse2-st.axis.com                   
dispatchjp1-st.axis.com                   
dispatcher-st.axis.com
 Axis Connection for managing Axis cameras in Security Center SaaS.
TCP 42000 dm201.cbs.boschsecurity.com

dm443.cbs.boschsecurity.com

dm161.cbs.boschsecurity.com

dm144.cbs.boschsecurity.com

 Bosch Connection to the cloud.
TCP 443 api.remote.boschsecurity.com Bosch Connection to remote portal.
TCP 80 http://36.mcg.escrypt.com/crl Bosch Certificate Revocation List (CRL).

Australian datacenters

The following network ports must be open for systems hosted in Australian datacenters.

Outbound port Endpoint domain Manufacturer Port usage
UDP 53 {AnyEndpointDomain} All Connection to a DNS server.
TCP 443 Recommended:

*.genetec.cloud

*.genetec.com

Current service endpoints:

login.genetec.com

eastau.video.genetec.cloud

australiaeast.tds.genetec.cloud

 All Connection for authenticating and managing cameras.
TCP 554 Recommended:

*.genetec.cloud

Current service endpoint:

rtsp.eastau.video.genetec.cloud

 Video Connection for RTSP streaming.
TCP 443 
auescsaas01.blob.core.windows.net
auescsaas02.blob.core.windows.net
auescsaas03.blob.core.windows.net
auescsaas04.blob.core.windows.net
auescsaas05.blob.core.windows.net
auescsaas06.blob.core.windows.net
auescsaas07.blob.core.windows.net
auescsaas08.blob.core.windows.net
auescsaas09.blob.core.windows.net
auescsaas10.blob.core.windows.net
auescsaas11.blob.core.windows.net
auescsaas12.blob.core.windows.net
auescsaas13.blob.core.windows.net
auescsaas14.blob.core.windows.net
auescsaas15.blob.core.windows.net
auescsaas16.blob.core.windows.net
 All Endpoints for video recording and video playback that support load balancing and resiliency.
TCP 1935

UDP 1935
Important:
Ensure that you include the Cloud Security Center Virtual Machine associated with your system in your allowlist.

Recommended:

*.gsc-cloud.com

Current service endpoint:

{YourClientSpecificSCVirtualMachines}.gsc-cloud.com

 All Interactive Connectivity Establishment (ICE) TCP in Web Real-Time Communication (WebRTC) for live streaming.
UDP 3478

TCP 3478

UDP 443

TCP 443

UDP 80

TCP 80

 turn.video.geneteccloud.com

stun.relay.metered.ca

global.relay.metered.ca

 All Traversal Using Relays around NAT (TURN) server and Session Traversal Utilities for NAT (STUN) servers for live WebRTC video streaming.
UDP 123 pool.ntp.org Axis Connection to an NTP server.
TCP 443 Recommended:

*.connect.axis.com

*-st.axis.com

s3-ats-migration-test.s3.eu-west-3.amazonaws.com

Current service endpoints:

cep.prod.flagsmith.connect.axis.com       
cep.otelcol.connect.axis.com
eu.prod.otelcol.connect.axis.com          
appinsights.connect.axis.com
prod.adm.connect.axis.com                 
signaling.prod.webrtc.connect.axis.com    
onboardme.prod.oneclick.connect.axis.com  

dispatchus1-st.axis.com                   
dispatchse1-st.axis.com                   
dispatchse2-st.axis.com                   
dispatchjp1-st.axis.com                   
dispatcher-st.axis.com
 Axis Connection for managing Axis cameras in Security Center SaaS.
TCP 42000 dm201.cbs.boschsecurity.com

dm443.cbs.boschsecurity.com

dm261.cbs.boschsecurity.com

 Bosch Connection to the cloud.
TCP 443 api.remote.boschsecurity.com Bosch Connection to remote portal.
TCP 80 http://36.mcg.escrypt.com/crl Bosch Certificate Revocation List (CRL).

European datacenters

The following network ports must be open for systems hosted in European datacenters.

Outbound port Endpoint domain Manufacturer Port usage
UDP 53 {AnyEndpointDomain} All Connection to a DNS server.
TCP 443 Recommended:

*.genetec.cloud

*.genetec.com

Current service endpoints:

login.genetec.com

westeu.video.genetec.cloud

westeurope.tds.genetec.cloud

 All Connection for authenticating and managing cameras.
TCP 554 Recommended:

*.genetec.cloud

Current service endpoint:

rtsp.westeu.video.genetec.cloud

 Video Connection for RTSP streaming.
TCP 443 
weuscsaas01.blob.core.windows.net
weuscsaas02.blob.core.windows.net
weuscsaas03.blob.core.windows.net
weuscsaas04.blob.core.windows.net
weuscsaas05.blob.core.windows.net
weuscsaas06.blob.core.windows.net
weuscsaas07.blob.core.windows.net
weuscsaas08.blob.core.windows.net
weuscsaas09.blob.core.windows.net
weuscsaas10.blob.core.windows.net
weuscsaas11.blob.core.windows.net
weuscsaas12.blob.core.windows.net
weuscsaas13.blob.core.windows.net
weuscsaas14.blob.core.windows.net
weuscsaas15.blob.core.windows.net
weuscsaas16.blob.core.windows.net
 All Endpoints for video recording and video playback that support load balancing and resiliency.
TCP 1935

UDP 1935
Important:
Ensure that you include the Cloud Security Center Virtual Machine associated with your system in your allowlist.

Recommended:

*.gsc-cloud.com

Current service endpoint:

{YourClientSpecificSCVirtualMachines}.gsc-cloud.com

 All Interactive Connectivity Establishment (ICE) TCP in Web Real-Time Communication (WebRTC) for live streaming.
UDP 3478

TCP 3478

UDP 443

TCP 443

UDP 80

TCP 80

 turn.video.geneteccloud.com

stun.relay.metered.ca

global.relay.metered.ca

 All Traversal Using Relays around NAT (TURN) server and Session Traversal Utilities for NAT (STUN) servers for live WebRTC video streaming.
UDP 123 pool.ntp.org Axis Connection to an NTP server.
TCP 443 Recommended:

*.connect.axis.com

*-st.axis.com

s3-ats-migration-test.s3.eu-west-3.amazonaws.com

Current service endpoints:

cep.prod.flagsmith.connect.axis.com       
cep.otelcol.connect.axis.com
eu.prod.otelcol.connect.axis.com          
appinsights.connect.axis.com
prod.adm.connect.axis.com                 
signaling.prod.webrtc.connect.axis.com    
onboardme.prod.oneclick.connect.axis.com  

dispatchus1-st.axis.com                   
dispatchse1-st.axis.com                   
dispatchse2-st.axis.com                   
dispatchjp1-st.axis.com                   
dispatcher-st.axis.com
 Axis Connection for managing Axis cameras in Security Center SaaS.
TCP 42000 dm201.cbs.boschsecurity.com

dm443.cbs.boschsecurity.com

dm35.cbs.boschsecurity.com

dm44.cbs.boschsecurity.com

 Bosch Connection to the cloud.
TCP 443 api.remote.boschsecurity.com Bosch Connection to remote portal.
TCP 80 http://36.mcg.escrypt.com/crl Bosch Certificate Revocation List (CRL).

Korean datacenters

The following network ports must be open for systems hosted in Korean datacenters.

Outbound port Endpoint domain Manufacturer Port usage
UDP 53 {AnyEndpointDomain} All Connection to a DNS server.
TCP 443 Recommended:

*.genetec.cloud

*.genetec.com

Current service endpoints:

login.genetec.com

centralkr.video.genetec.cloud

centralkorea.tds.genetec.cloud

 All Connection for authenticating and managing cameras.
TCP 554 Recommended:

*.genetec.cloud

Current service endpoint:

rtsp.centralkr.video.genetec.cloud

 Video Connection for RTSP streaming.
TCP 443 
ckrscsaas01.blob.core.windows.net
ckrscsaas02.blob.core.windows.net
ckrscsaas03.blob.core.windows.net
ckrscsaas04.blob.core.windows.net
ckrscsaas05.blob.core.windows.net
ckrscsaas06.blob.core.windows.net
ckrscsaas07.blob.core.windows.net
ckrscsaas08.blob.core.windows.net
ckrscsaas09.blob.core.windows.net
ckrscsaas10.blob.core.windows.net
ckrscsaas11.blob.core.windows.net
ckrscsaas12.blob.core.windows.net
ckrscsaas13.blob.core.windows.net
ckrscsaas14.blob.core.windows.net
ckrscsaas15.blob.core.windows.net
ckrscsaas16.blob.core.windows.net
 All Endpoints for video recording and video playback that support load balancing and resiliency.
TCP 1935

UDP 1935
Important:
Ensure that you include the Cloud Security Center Virtual Machine associated with your system in your allowlist.

Recommended:

*.gsc-cloud.com

Current service endpoint:

{YourClientSpecificSCVirtualMachines}.gsc-cloud.com

 All Interactive Connectivity Establishment (ICE) TCP in Web Real-Time Communication (WebRTC) for live streaming.
UDP 3478

TCP 3478

UDP 443

TCP 443

UDP 80

TCP 80

 turn.video.geneteccloud.com

stun.relay.metered.ca

global.relay.metered.ca

 All Traversal Using Relays around NAT (TURN) server and Session Traversal Utilities for NAT (STUN) servers for live WebRTC video streaming.
UDP 123 pool.ntp.org Axis Connection to an NTP server.
TCP 443 Recommended:

*.connect.axis.com

*-st.axis.com

s3-ats-migration-test.s3.eu-west-3.amazonaws.com

Current service endpoints:

cep.prod.flagsmith.connect.axis.com       
cep.otelcol.connect.axis.com
eu.prod.otelcol.connect.axis.com          
appinsights.connect.axis.com
prod.adm.connect.axis.com                 
signaling.prod.webrtc.connect.axis.com    
onboardme.prod.oneclick.connect.axis.com  

dispatchus1-st.axis.com                   
dispatchse1-st.axis.com                   
dispatchse2-st.axis.com                   
dispatchjp1-st.axis.com                   
dispatcher-st.axis.com
 Axis Connection for managing Axis cameras in Security Center SaaS.
TCP 42000 dm201.cbs.boschsecurity.com

dm443.cbs.boschsecurity.com

dm261.cbs.boschsecurity.com

 Bosch Connection to the cloud.
TCP 443 api.remote.boschsecurity.com Bosch Connection to remote portal.
TCP 80 http://36.mcg.escrypt.com/crl Bosch Certificate Revocation List (CRL).

UK datacenters

The following network ports must be open for systems hosted in UK datacenters.

Outbound port Endpoint domain Manufacturer Port usage
UDP 53 {AnyEndpointDomain} All Connection to a DNS server.
TCP 443 Recommended:

*.genetec.cloud

*.genetec.com

Current service endpoints:

login.genetec.com

southuk.video.genetec.cloud

southuk.tds.genetec.cloud

 All Connection for authenticating and managing cameras.
TCP 554 Recommended:

*.genetec.cloud

Current service endpoint:

rtsp.southuk.video.genetec.cloud

 Video Connection for RTSP streaming.
TCP 443 
sukscsaas01.blob.core.windows.net
sukscsaas02.blob.core.windows.net
sukscsaas03.blob.core.windows.net
sukscsaas04.blob.core.windows.net
sukscsaas05.blob.core.windows.net
sukscsaas06.blob.core.windows.net
sukscsaas07.blob.core.windows.net
sukscsaas08.blob.core.windows.net
sukscsaas09.blob.core.windows.net
sukscsaas10.blob.core.windows.net
sukscsaas11.blob.core.windows.net
sukscsaas12.blob.core.windows.net
sukscsaas13.blob.core.windows.net
sukscsaas14.blob.core.windows.net
sukscsaas15.blob.core.windows.net
sukscsaas16.blob.core.windows.net
 All Endpoints for video recording and video playback that support load balancing and resiliency.
TCP 1935

UDP 1935
Important:
Ensure that you include the Cloud Security Center Virtual Machine associated with your system in your allowlist.

Recommended:

*.gsc-cloud.com

Current service endpoint:

{YourClientSpecificSCVirtualMachines}.gsc-cloud.com

 All Interactive Connectivity Establishment (ICE) TCP in Web Real-Time Communication (WebRTC) for live streaming.
UDP 3478

TCP 3478

UDP 443

TCP 443

UDP 80

TCP 80

 turn.video.geneteccloud.com

stun.relay.metered.ca

global.relay.metered.ca

 All Traversal Using Relays around NAT (TURN) server and Session Traversal Utilities for NAT (STUN) servers for live WebRTC video streaming.
UDP 123 pool.ntp.org Axis Connection to an NTP server.
TCP 443 Recommended:

*.connect.axis.com

*-st.axis.com

s3-ats-migration-test.s3.eu-west-3.amazonaws.com

Current service endpoints:

cep.prod.flagsmith.connect.axis.com       
cep.otelcol.connect.axis.com
eu.prod.otelcol.connect.axis.com          
appinsights.connect.axis.com
prod.adm.connect.axis.com                 
signaling.prod.webrtc.connect.axis.com    
onboardme.prod.oneclick.connect.axis.com  

dispatchus1-st.axis.com                   
dispatchse1-st.axis.com                   
dispatchse2-st.axis.com                   
dispatchjp1-st.axis.com                   
dispatcher-st.axis.com
 Axis Connection for managing Axis cameras in Security Center SaaS.
TCP 42000 dm201.cbs.boschsecurity.com

dm443.cbs.boschsecurity.com

dm35.cbs.boschsecurity.com

dm44.cbs.boschsecurity.com

 Bosch Connection to the cloud.
TCP 443 api.remote.boschsecurity.com Bosch Connection to remote portal.
TCP 80 http://36.mcg.escrypt.com/crl Bosch Certificate Revocation List (CRL).