5
XV Gateways Ports:
Note: The XV Gateway will auto update to the latest software once it is connected to the internet.
Please allow up to 30 minutes to update before arming your system with AlarmVision. If the XV
Gateway is being installed on a restricted network, please ensure the floowing URLs and ports are
unblocked.
New critical services on additional ports may be added in future. (If not monitoring and acting on
announcements of updates to this document, please allow the “STRONGLY RECOMMENDED” list
of ports rather than the “minimal” one.)
• Outbound to Internet
WHITELIST ENTRIES PORTS DESCRIPTION
camect.securecomwireless.com 10443/TCP DMP XV Gateways cloud services & configuration
video1.whitelist.camect.com
video2.whitelist.camect.com
video3.whitelist.camect.com
video4.whitelist.camect.com
STRONGLY RECOMMENDED
(to avoid maintenance issues):
TCP: all ports
UDP: all ports
minimal list:
TCP: 3478, 19302
UDP: 3478, 19302
WebRTC trac and associated infrastructure for video
streaming. Currently this is limited to TURN and STUN
services on ports 3478 and 19302. Allowing all ports
allows flexibility for changes to be made to this in future.
cloud1.whitelist.camect.com
cloud2.whitelist.camect.com
cloud3.whitelist.camect.com
cloud4.whitelist.camect.com
STRONGLY RECOMMENDED
(to avoid maintenance issues):
TCP: All ports
UDP: 53
minimal list:
TCP: 9998, 8888, 3443, 443, 80
UDP: 53
Camect’s main cloud service, used to support operation,
management, and licensing of gateways, coordination
to set up WebRTC connections, monitoring of gateway
health, and a ddns-like service for gateways.
connectivity1.whitelist.camect.com
connectivity2.whitelist.camect.com
connectivity3.whitelist.camect.com
connectivity4.whitelist.camect.com
ICMP ping and ping response Used to ensure gateway network hardware is working and
able to connect to the internet properly. Destinations are
tested using ICMP ping.
ntp1.whitelist.camect.com
ntp2.whitelist.camect.com
ntp3.whitelist.camect.com
ntp4.whitelist.camect.com
UDP: 123 Network time protocol servers that are used to keep the
time accurate.
swupdate1.whitelist.camect.com
swupdate2.whitelist.camect.com
swupdate3.whitelist.camect.com
swupdate4.whitelist.camect.com
TCP: 443, 80 AI Model updates. A gateway can operate without model
updates, but users will be unable to receive improved AI
detections.
aimodel1.whitelist.camect.com
aimodel2.whitelist.camect.com
aimodel3.whitelist.camect.com
aimodel4.whitelist.camect.com
aimodel5.whitelist.camect.com
TCP: 443, 80 AI model updates and feedback sharing. A gateway can
operate without model updates, but users will be unable
to report AI problems or to receive the results of model
updates from their feedback and feedback of others.
dns1.whitelist.camect.com
dns2.whitelist.camect.com
dns3.whitelist.camect.com
dns4.whitelist.camect.com
UDP: 53 DNS servers that are known to work reliably with the
software update system. Software update validation has
stringent requirements on DNS – we have seen many
cases where software updates fail even though local DNS
servers appear to be usable for other purposes.
DNS Port 53 Ensure the XV Gateways can send and receive DNS trac.
• Outbound to Local Network
9011/TCP: XV Gateway to DMP panel communication.
554/TCP: XV Gateway to camera video streaming.
554/UDP: XV Gateway to camera video streaming.
3702/UDP: WS-Discovery for XV Gateways to the DMP panel, camera (ONVIF discovery) and
future support. WS-Discovery is a multicast protocol.
7946/TCP and 7946/UDP: for future support when clustering AlarmVision devices.
1025/UDP: for future support when clustering AlarmVision devices.