NOTE: The following instructions are provided as general best networking practices for instances where Node/EdgeCaster is installed in heavily secured networks or behind restrictive Firewalls. Cases where Node/EdgeCaster is to be accessed from an external network are also addressed, referred to as a “port-forwarded environment”.
Table of Contents:
- Videon Discovery App
- Videon Software Release Server
- Quick Reference Tables
- Port-Forwarded Environment
- Outbound Communication
- LiveEdge® Cloud Control
Videon Discovery App
Videon Discovery app uses SSDP protocol to manage device discovery. Ensure traffic in the standard broadcast range of 239.255.255.250 is permitted for Videon Discovery app to behave appropriately.
Videon Software Release Server
Videon's Software Release Server provides the necessary files for download to Videon devices over-the-air (OTA). Ensure traffic is permitted for the following HTTPS URL in order for software updates to download to your Videon device correctly:
- LiveEdge® Node: https://releases.videon-central.com/
- LiveEdge® Max: https://releases.videonlabs.com/
Quick Reference Tables
Inbound Port Forwarding | ||
Type | External Port | Internal Port |
TCP | End-user defined | 80 |
TCP | 2020 | 2020 |
Outbound Traffic | ||
Type | Port | Description |
UDP | End-user defined | Streaming output protocols (RTMP, *SRT, HTTP) |
UDP | DNS | |
UDP | 123 |
NTP server traffic |
*Output protocol also requires for inbound traffic to be open to ensure proper communication
LiveEdge® Cloud Control Communications | |
Type | Port/Endpoint |
TCP |
443 |
TCP | 8443 |
TCP |
8883 |
a3di2u0bk63rob-ats.iot.us-west-2.amazonaws.com |
|
api.videoncloud.com |
|
api-devices-devicelogsbucketce8d3ab0-1xnnsjk85q9eg.s3.us-west-2.amazonaws.com |
Port-Forwarded Environment
Node/EdgeCasters located in this environment are vulnerable/unprotected: Practice caution when accessing and making publicly available!!!
We would instead recommend the use of Cloud Control in place of installing Node/EdgeCaster in a port-forwarded environment.
When attempting to access the Node/EdgeCaster’s web UI from an external network, the following ports will be required to be forwarded via the router:
-
Internal port 80 - TCP traffic - this port hosts the HTTP server for the web UI
-
Internal port 2020 - TCP traffic - this port allows communication with the REST API
-
Port 2020 is the required port for REST API access, this cannot be forwarded to another external port and, therefore, only one Node/EdgeCaster can be placed on the WAN for successful use of the web UI.
-
Outbound Communication
-
When utilizing HTTP streaming, RTMP, SRT, and HTTP integrations, ensure HTTP TCP traffic is not restricted from the Node/EdgeCaster.
- If accessing an external NTP server, ensure port 123 is open for UDP traffic.
-
For all streaming protocol(s) being utilized (RTMP, SRT, HTTP), ensure the ports as defined for each output are open for TCP traffic on the Firewall.
Cloud Control
Cloud Control requires the following standard AWS endpoints and ports to be unrestricted on the network Firewall.
For these endpoints, please DO NOT attempt to restrict communications to a single IP address. These endpoints must be allowed for communications exactly as defined below.
- MQTT endpoint: a3di2u0bk63rob-ats.iot.us-west-2.amazonaws.com
- API endpoint: api.videoncloud.com
- AWS S3 endpoint: api-devices-devicelogsbucketce8d3ab0-1xnnsjk85q9eg.s3.us-west-2.amazonaws.com
Port 443 - TCP traffic
Port 8443 - TCP traffic
Port 8883 -TCP traffic