Port requirements for direct-to-cloud cameras

2025-01-10Last updated

To enable communication with direct-to-cloud (D2C) cameras, you must open specific outbound ports for the associated domains.

All D2C cameras

For all D2C cameras, open the following outbound ports for the associated domains to enable them to connect to cloud services, be managed, and stream video.

Outbound port Endpoint domain Port usage
UDP 53 Connection to the Domain Name System (DNS)
TCP 443 Domains :

*.blob.core.windows.net

*.genetec.cloud

login.genetec.com

 Management and recording offload
Details for the Australia region:
eastau.video.genetec.cloud
australiaeast.tds.genetec.cloud

auescsaas01.blob.core.windows.net
auescsaas02.blob.core.windows.net
auescsaas03.blob.core.windows.net
auescsaas04.blob.core.windows.net
auescsaas05.blob.core.windows.net
auescsaas06.blob.core.windows.net
auescsaas07.blob.core.windows.net
auescsaas08.blob.core.windows.net
auescsaas09.blob.core.windows.net
auescsaas10.blob.core.windows.net
auescsaas11.blob.core.windows.net
auescsaas12.blob.core.windows.net
auescsaas13.blob.core.windows.net
auescsaas14.blob.core.windows.net
auescsaas15.blob.core.windows.net
auescsaas16.blob.core.windows.net
Details for the Canada region:
centralca.video.genetec.cloud
cancentral.tds.genetec.cloud

cacscsaas01.blob.core.windows.net
cacscsaas02.blob.core.windows.net
cacscsaas03.blob.core.windows.net
cacscsaas04.blob.core.windows.net
cacscsaas05.blob.core.windows.net
cacscsaas06.blob.core.windows.net
cacscsaas07.blob.core.windows.net
cacscsaas08.blob.core.windows.net
cacscsaas09.blob.core.windows.net
cacscsaas10.blob.core.windows.net
cacscsaas11.blob.core.windows.net
cacscsaas12.blob.core.windows.net
cacscsaas13.blob.core.windows.net
cacscsaas14.blob.core.windows.net
cacscsaas15.blob.core.windows.net
cacscsaas16.blob.core.windows.net
Details for the Europe region:
westeu.video.genetec.cloud
westeurope.tds.genetec.cloud

weuscsaas01.blob.core.windows.net
weuscsaas02.blob.core.windows.net
weuscsaas03.blob.core.windows.net
weuscsaas04.blob.core.windows.net
weuscsaas05.blob.core.windows.net
weuscsaas06.blob.core.windows.net
weuscsaas07.blob.core.windows.net
weuscsaas08.blob.core.windows.net
weuscsaas09.blob.core.windows.net
weuscsaas10.blob.core.windows.net
weuscsaas11.blob.core.windows.net
weuscsaas12.blob.core.windows.net
weuscsaas13.blob.core.windows.net
weuscsaas14.blob.core.windows.net
weuscsaas15.blob.core.windows.net
weuscsaas16.blob.core.windows.net
Details for the US region: 
eastus2.video.genetec.cloud
eastus2.tds.genetec.cloud

eus2scsaas01.blob.core.windows.net
eus2scsaas02.blob.core.windows.net
eus2scsaas03.blob.core.windows.net
eus2scsaas04.blob.core.windows.net
eus2scsaas05.blob.core.windows.net
eus2scsaas06.blob.core.windows.net
eus2scsaas07.blob.core.windows.net
eus2scsaas08.blob.core.windows.net
eus2scsaas09.blob.core.windows.net
eus2scsaas10.blob.core.windows.net
eus2scsaas11.blob.core.windows.net
eus2scsaas12.blob.core.windows.net
eus2scsaas13.blob.core.windows.net
eus2scsaas14.blob.core.windows.net
eus2scsaas15.blob.core.windows.net
eus2scsaas16.blob.core.windows.net
TCP 1935
Important: Ensure that you include the Cloud Security Center Virtual Machine associated with your system: *.gsc-cloud.com in your allowlist.
 Interactive Connectivity Establishment (ICE) TCP in Web Real-Time Communication (WebRTC) for live streaming
TCP 443

UDP 3478

TCP 3478

 turn.video.geneteccloud.com

stun.relay.metered.ca

global.relay.metered.ca

 Traversal Using Relays around NAT (TURN) server and Session Traversal Utilities for NAT (STUN) server for live video streaming
TCP 80 stun.relay.metered.ca

global.relay.metered.ca

 WebRTC relay (STUN and TURN)

Axis D2C cameras

Axis D2C cameras need extra connections to Axis services for onboarding, correct operation, and maintenance.
Outbound port Endpoint domain Port usage
UDP 123 pool.ntp.org
Note: An Axis domain might replace this domain in the future
 Network Time Protocol (NTP)
TCP 443 *.connect.axis.com Device management and diagnostics
Details:
cep.prod.flagsmith.connect.axis.com
cep.otelcol.connect.axis.com
eu.prod.otelcol.connect.axis.com
appinsights.connect.axis.com
prod.adm.connect.axis.com
signaling.prod.webrtc.connect.axis.com
onboardme.prod.oneclick.connect.axis.com
TCP 443 *-st.axis.com Device onboarding
Details:
dispatchus1-st.axis.com
dispatchse1-st.axis.com
dispatchse2-st.axis.com
dispatchjp1-st.axis.com
dispatcher-st.axis.com
TCP 443 s3-ats-migration-test.s3.eu-west-3.amazonaws.com Test Amazon Web Services (AWS) Public Key Infrastructure (PKI)

Bosch D2C cameras

Bosch D2C cameras need extra connections to Bosch services for onboarding, correct operation, and maintenance.
Outbound port Endpoint domain Port usage
TCP 42000 dm201.cbs.boschsecurity.com

dm443.cbs.boschsecurity.com

 Cloud connector
TCP 42000 Europe region:

dm35.cbs.boschsecurity.com

dm44.cbs.boschsecurity.com

 Remote portal
North America region:

dm161.cbs.boschsecurity.com

dm144.cbs.boschsecurity.com
Asia/Pacific region:

dm261.cbs.boschsecurity.com
TCP 443 api.remote.boschsecurity.com Remote portal endpoint
TCP 80 http://36.mcg.escrypt.com/crl Certificate Revocation List (CRL)