How do I need to configure my firewall?

The Domotz agent requires the following port connections to communicate properly. Please ensure that your firewall settings are updated to meet these requirements:


North America:

  • api-us-east-1-cell-1.domotz.com (port 443)
  • portal.domotz.com (port 443)
  • messaging-us-east-1-cell-1.domotz.com (port 5671)
  • echo.domotz.com (ICMP)
  • sshg.domotz.co, us-east-1-sshg.domotz.co, us-west-2-sshg.domotz.co (range: 32700 – 32849) – these are required for the Remote Connection functionality.

The Rest of the World:

  • api-eu-west-1-cell-1.domotz.com (port 443)
  • portal.domotz.com (port 443)
  • messaging-eu-west-1-cell-1.domotz.com (port 5671)
  • echo.domotz.com (ICMP)
  • sshg.domotz.co, us-east-1-sshg.domotz.co, us-west-2-sshg.domotz.co (range: 32700 – 32849) – these are required for the Remote Connection functionality.

For speed tests, please allow the agent access through the following ports:

  • Any destination (0.0.0.0) for M-Lab based speed tests (ports 3001-3010 and 32768-65535 TCP)

 


Also, if you are using our provided Domotz-Box, the following services are used too (for automated upgrades of the packages).

B-01, B-03, B-11 models:

  • provisioning.domotz.com (ports 4505 and 4506 TCP)
  • pool.sks-keyservers.net (port 11371 TCP)

B-12 model:

  • messaging.orchestration.domotz.com (port 5671 TCP)
  • api.orchestration.domotz.com (port 443 TCP)