...
Connecting to LAN:
Use an Ethernet connection with DHCP to connect the Smart Hub (ACU) or Single Door Controller (SDC) to the Local Area Network (LAN).
Firewall Settings:
Configure firewall settings to communicate with the Avigilon Alta system.
Required outbound ports:
TCP port 443
UDP port 123
Audio and Video Quality for Video Reader Pro and Video Intercom Reader Pro:
To ensure optimal audio and video quality, allow access to the following outbound ports and enable UDP hole-punching (or disable symmetric NAT):
TCP port 443
UDP port 123
UDP port 3478 (TURN/UDP servers for connectivity)
UDP ports 50000-60000 (WebRTC)
Avoid using DNS-based content filtering on networks where the Video Intercom Reader Pro operates. Such filtering can interfere with video and audio performance, causing latency or connection issues.
If DNS-based filtering is necessary, ensure that both the Intercom and any connected user devices are excluded from the filtering through your network firewall settings.
Additional Firewall Considerations:
Fortinet firewalls have antivirus software that blocks AWS traffic by default. AWS must be whitelisted.
If using an external DNS server, outbound UDP port 53 must be open.
Wi-Fi Unlocking from Mobile App:
Ensure the ACU/SDC's inbound TCP port 443 is available within the LAN.
Inbound port forwarding on the router, firewall, or NAT device is unnecessary.
HTTPS certificate rewriting or TLS/SSL inspection is not allowed.
IP Address and Network Segregation:
Static Cloud IP for Enterprise Licenses:
Avigilon Alta offers a Static Cloud IP for organizations with strict network firewall policies. This simplifies opening a few IP addresses to allow ACU/SDC to connect to the cloud.
The latest version of the Alta Access app supports provisioning ACU/SDC devices behind restricted firewalls.
...