Information on what should be whitelisted in firewalls when using Factbird products on a local network.
Port Allow Rules
The following table shows which ports and protocols need to be allowed to connect to specific endpoints for Factbird products to function.
| Port | Factbird Duo | Factbird View | Factbird NX1 | KepwareEx Server | Protocol | Note | Domain |
| 443 (TCP) | X | HTTPS | *.factbird.com, *.google.com, *.amazonaws.com | ||||
| 53 (UDP) | X | X | X | X | DNS | DUO, View: configured via. DHCP settings. Omron NX1 preconfigured to Google DNS. KepwareEX server uses Windows settings |
DUO, View: Omron NX1: 8.8.8.8, 8.8.4.4 |
| 123 (UDP) | X | X | X | X | NTP | DUO, View, Omron NX1 preconfigured to pool.ntp.org. KepwareEX server uses Windows settings | pool.ntp.org, *.pool.ntp.org, *.google.com |
| 8883 (TCP) | X | X | X | MQTT over TLS |
For shared tenant a3f8k0ccx04zas-ats.iot.eu-west-1.amazonaws.com For single tenant (Private cloud) the URL can be requested from support. |
Domain whitelist
The following domains are used by the Factbird Products to function.
| Domain | Use |
| *.factbird.com | Application UIs for System 2 |
| api.locize.app | To get translations for System 2 app |
| https://585cxbjqrwh1.statuspage.io/api/v2/status.json | To get operational status information on System 2 |
| https://cdn.jsdelivr.net | To get HLS JS library to stream video data |
| *.iot.eu-west-1.amazonaws.com | MQTT IoT endpoint (For shared tenant a3f8k0ccx04zas-ats.iot.eu-west-1.amazonaws.com) |
| *.balena-cloud.com, *.docker.com, *.docker.io, api.resin.io, google.com, *.kinesisvideo.eu-west-1.amazonaws.com, *.iot.eu-west-1.amazonaws.com | Factbird View v1 (Balena devices) |
| *.iot.eu-west-1.amazonaws.com *.s3.eu-west-1.amazonaws.com *.kinesis.eu-west-1.amazonaws.com *.logs.eu-west-1.amazonaws.com greengrass.eu-west-1.amazonaws.com (All of these can be handled as *.amazonaws.com) time.google.com | Factbird View v2 |