Port requirements for direct-to-cloud cameras

2024-06-20

To enable communication with direct-to-cloud (D2C) cameras, you must open specific outbound ports for the associated domains.

All D2C cameras

For all D2C cameras, open the following outbound ports for the associated domains to enable them to connect to cloud services, be managed, and stream video.


Outbound port	Endpoint domain	Port usage
UDP 53		Connection to the Domain Name System (DNS)
TCP 443	Domains : .blob.core.windows.net .genetec.cloud login.genetec.com	Management and recording offload
	Details for the Australia region: eastau.video.genetec.cloud australiaeast.tds.genetec.cloud auescsaas01.blob.core.windows.net auescsaas02.blob.core.windows.net auescsaas03.blob.core.windows.net auescsaas04.blob.core.windows.net auescsaas05.blob.core.windows.net auescsaas06.blob.core.windows.net auescsaas07.blob.core.windows.net auescsaas08.blob.core.windows.net auescsaas09.blob.core.windows.net auescsaas10.blob.core.windows.net auescsaas11.blob.core.windows.net auescsaas12.blob.core.windows.net auescsaas13.blob.core.windows.net auescsaas14.blob.core.windows.net auescsaas15.blob.core.windows.net auescsaas16.blob.core.windows.net
	Details for the Canada region: centralca.video.genetec.cloud cancentral.tds.genetec.cloud cacscsaas01.blob.core.windows.net cacscsaas02.blob.core.windows.net cacscsaas03.blob.core.windows.net cacscsaas04.blob.core.windows.net cacscsaas05.blob.core.windows.net cacscsaas06.blob.core.windows.net cacscsaas07.blob.core.windows.net cacscsaas08.blob.core.windows.net cacscsaas09.blob.core.windows.net cacscsaas10.blob.core.windows.net cacscsaas11.blob.core.windows.net cacscsaas12.blob.core.windows.net cacscsaas13.blob.core.windows.net cacscsaas14.blob.core.windows.net cacscsaas15.blob.core.windows.net cacscsaas16.blob.core.windows.net
	Details for the Europe region: westeu.video.genetec.cloud westeurope.tds.genetec.cloud weuscsaas01.blob.core.windows.net weuscsaas02.blob.core.windows.net weuscsaas03.blob.core.windows.net weuscsaas04.blob.core.windows.net weuscsaas05.blob.core.windows.net weuscsaas06.blob.core.windows.net weuscsaas07.blob.core.windows.net weuscsaas08.blob.core.windows.net weuscsaas09.blob.core.windows.net weuscsaas10.blob.core.windows.net weuscsaas11.blob.core.windows.net weuscsaas12.blob.core.windows.net weuscsaas13.blob.core.windows.net weuscsaas14.blob.core.windows.net weuscsaas15.blob.core.windows.net weuscsaas16.blob.core.windows.net
	Details for the US region: eastus2.video.genetec.cloud eastus2.tds.genetec.cloud eus2scsaas01.blob.core.windows.net eus2scsaas02.blob.core.windows.net eus2scsaas03.blob.core.windows.net eus2scsaas04.blob.core.windows.net eus2scsaas05.blob.core.windows.net eus2scsaas06.blob.core.windows.net eus2scsaas07.blob.core.windows.net eus2scsaas08.blob.core.windows.net eus2scsaas09.blob.core.windows.net eus2scsaas10.blob.core.windows.net eus2scsaas11.blob.core.windows.net eus2scsaas12.blob.core.windows.net eus2scsaas13.blob.core.windows.net eus2scsaas14.blob.core.windows.net eus2scsaas15.blob.core.windows.net eus2scsaas16.blob.core.windows.net
TCP 1935	Important: Ensure that you include the Cloud Security Center Virtual Machine associated with your system: *.gsc-cloud.com in your allowlist.	Interactive Connectivity Establishment (ICE) TCP in Web Real-Time Communication (WebRTC) for live streaming
TCP 443 UDP 3478 TCP 3478	turn.video.geneteccloud.com stun.relay.metered.ca global.relay.metered.ca	Traversal Using Relays around NAT (TURN) server and Session Traversal Utilities for NAT (STUN) server for live video streaming
TCP 80	stun.relay.metered.ca global.relay.metered.ca	WebRTC relay (STUN and TURN)

Axis D2C cameras

Axis D2C cameras need extra connections to Axis services for onboarding, correct operation, and maintenance.


Outbound port	Endpoint domain	Port usage
UDP 123	pool.ntp.org Note: An Axis domain might replace this domain in the future	Network Time Protocol (NTP)
TCP 443	*.connect.axis.com	Device management and diagnostics
TCP 443	Details: `cep.prod.flagsmith.connect.axis.com cep.otelcol.connect.axis.com eu.prod.otelcol.connect.axis.com appinsights.connect.axis.com prod.adm.connect.axis.com signaling.prod.webrtc.connect.axis.com onboardme.prod.oneclick.connect.axis.com`	Device management and diagnostics
TCP 443	*-st.axis.com	Device onboarding
TCP 443	Details: `dispatchus1-st.axis.com dispatchse1-st.axis.com dispatchse2-st.axis.com dispatchjp1-st.axis.com dispatcher-st.axis.com`	Device onboarding
TCP 443	s3-ats-migration-test.s3.eu-west-3.amazonaws.com	Test Amazon Web Services (AWS) Public Key Infrastructure (PKI)