Firewall rules

Version V1.62

Cynap Core PRO has firewall rules that must be adhered to in order to allow successful network communications and the corresponding services to be used.

Acknowledgements ("ACKs") of TCP packets are not considered in the following table in order to be able to illustrate the direction of the data packets. Since acknowledgements are usually sent back via the same TCP port, the other direction shall not be blocked to ensure smooth functioning.

To use services with user defined addresses and ports, be sure these are not blocked by your firewall (external and personal).

 

Function / Application

Port

Type

Inbound / Outbound

Description

Airplay

 

 

 

 

Multicast DNS (mDNS)

5353

UDP

Inbound
Outbound

Multicast DNS (mDNS 224.0.0.251) Bonjour.

Audio

4100 ~ 4164

TCP
UDP

Inbound

Audio for Airplay.

Airplay

7000

TCP

Inbound

Primary Airplay communication.

Video

7100

TCP

Inbound

Airplay video communication.

Audio

47000

TCP

Inbound

Airplay audio communication.

AirPlay Bluetooth
for Device Discovery

 

 

 

 

Audio

4100 ~ 4164

TCP
UDP

Inbound

Audio for AirPlay.

AirPlay

5000

TCP

Inbound

AirPlay communication with legacy devices.

AirPlay

7000

TCP

Inbound

Primary AirPlay communication.

Video

7100

TCP

Inbound

AirPlay video communication.

Audio

47000

TCP

Inbound

AirPlay audio communication.

Chromecast

 

 

 

 

Multicast DNS (mDNS)

5353

UDP

Inbound
Outbound

Multicast DNS (mDNS 224.0.0.251).

Discovery

1900

UDP

Inbound

Chromecast discovery.

Audio

4100 ~ 4164

TCP
UDP

Inbound

Audio for Chromecast.

Chromecast

8008

TCP

Inbound

Primary Chromecast communication.

Chromecast

8009

TCP

Inbound

Communication Chromecast.

Video data stream

32768 ~ 61000

UDP

Inbound
Outbound

Chromecast (video data stream).

Miracast / MS-MICE

 

 

 

 

Multicast DNS (mDNS)

5353

UDP

Inbound

Multicast DNS (mDNS 224.0.0.251).

DHCP

67 / 68

UDP

Inbound

DHCP communication between device, receiver, and DHCP server.

RTP Stream

19000 ~ 19007
19010 ~ 19017

UDP

Inbound

RTP media traffic port for delivering audio and video.

RTSP Control

7236

TCP

Outbound

RTSP control port is used to establish and manage session.

MS-MICE Control

7250

TCP

Inbound

Control port on which Cynap family system listen for Miracast packets when over existing network mode is enabled.

Touchback

50000

TCP

Outbound

This port is for touchback to send mouse events back between Cynap to the Windows computer. If this port is blocked, bi-directional inputs is not possible.

Hardware Curser extension

19020 ~ 19027
19030 ~19037

UDP

Inbound

Hardware cursor to reduce latency when using touchback.

vSolution Matrix

 

 

 

 

Discovery Multicast

50000

UDP

Inbound

Discovery Multicast – This port is used for device discovery all available Cynap and Visualizer in the network by vSolution applications (uses Multicast IP address 239.255.255.250). If this port is blocked, vSolution applications may not be able to find devices automatically.

http, Cynap control

80

TCP

Inbound
Outbound

For master control mode.

https, Cynap control

443

TCP
UDP

Inbound
Outbound

For master control mode.

NFS

111 / 2049

TCP
UDP

Outbound

NFS – Connection to networks drives.

CIFS

137 / 139

TCP
UDP

Outbound

CIFS – Connection to networks drives.

SSHFS

50930

TCP

Inbound

SSHFS – vSolution Matrix File Sharing Key Exchange.

TLS Control

50917

TCP

Inbound

TLS Control – This port is for secure communication between Wolfvision applications (e.g. vSolution Link) to Cynap and / or Visualizer. If this port is blocked, secure communication to Cynap and / or Visualizer, inclusive firmware updates are blocked.

RTSP

554

TCP

Inbound

RTSP – This the communication port for the RTSP stream. The used UDP port will be handled automatically.

Wake On LAN

7 / 9

UDP

Inbound
Outbound

Usually port 7 is used for sending the magic packet.

FTP

21

TCP

Outbound

Connection to FTP server.

This port will also be used to check for available Feature Pack and Warranty Pack updates.

SSH

22

TCP

Inbound

Access for Wolfvision support.

http, Cynap control

80

TCP

Inbound

This port used to connect to Cynap web interface (httpd). If this port is blocked, no connection can be made.

https, SSL
e.g.
Cloud Service, Cynap control

443

TCP
UDP

Inbound

This port is used to cloud service and for secure connect to Cynap web for secure connect to Cynap web interface. If this port is blocked, no connection can be made.

Proxy

8080

TCP
UDP

Outbound

Default port proxy function (This port can be changed in the Proxy settings).

NTFS

111 / 2049

TCP
UDP

Outbound

Connection to network drives

CIFS

137 / 139

TCP
UDP

Outbound

Connection to network drives

NTP

123

UDP

Outbound

For optional clock synchronization by a time server (Network Time Protocol, NTP)

LDAP

389

TCP
UDP

Outbound

Connection to LDAP server

LDAPS

636

TCP
UDP

Outbound

Connection to LDAPS server (TLS)

PJLink

4352

TCP

Outbound

This is the default port for PJLink and cab be changed in the settings (Peripheral Control)

vSolution Cast

 

 

 

 

Discovery Multicast

50000

UDP

Inbound

This port is used for device discovery all available Cynap and Visualizer in the network by vSolution applications (uses Multicast IP address 239.255.255.250). If this port is blocked, vSolution applications may not be able to find devices automatically.

Device Discovery

50913

UDP

Inbound

This port is used for device discovery

For control purposes

50915

TCP

Inbound

This port is used for control purposes e.g. room control system, and others). If this port is blocked, no control is possible

TLS Control

50917

TCP

Inbound

This port is for secure communication between WolfVision applications (e.g. vSolution App) to Cynap and / or Visualizer. If this port is blocked, secure communication to Cynap and / or Visualizer, inclusive firmware updates are blocked.

Video streams

50921

TCP

Inbound

Video streams between WolfVision App to Cynap and Visualizer. If this port is blocked, no stream are possible.

Touchback

50922

TCP

Outbound

This port is for touchback between Cynap and Wolfvision App vSolution Cast to send mouse events back to the Windows computer. If this port is blocked, bi-directional inputs is not possible

vSolution App
iOS / Android / Windows

 

 

 

 

Discovery Multicast

50000

UDP

Inbound

This port is used for device discovery all available Cynap and Visualizer in the network by vSolution applications (uses Multicast IP address 239.255.255.250). If this port is blocked, vSolution applications may not be able to find devices automatically.

http, Cynap control

80

TCP

Inbound

This port is used to connect to the Cynap web interface (httpd). If this port is blocked, no connection can be made.

https, SSL
e.g. Cloud Service, Cynap control

443

TCP

Inbound

This port is used to cloud services and for secure connect to the Cynap web for secure connect to the Cynap web interface. If this port is blocked, no connection can be made.

Device Discovery

50913

UDP

Inbound

This port is used for device discovery.

For control purposes

50915

TCP

Inbound

This port is used for control purposes e.g. room control system, and others). If this port is blocked, no control is possible

For control purposes

50917

TCP

Inbound

This port is for secure communication between WolfVision applications (e.g., vSolution App) to Cynap and / or Visualizer. If this port is blocked, secure communication to Cynap and / or Visualizer, inclusive firmware updates are blocked

For control purposes

50921

TCP

Inbound

Video streams between WolfVision App to Cynap and Visualizer. If this port is blocked, no streams are possible

For control purposes

50922

TCP

Outbound

This port is for touchback between Cynap and WolfVision App vSolution Cast to send mouse events back to the computer. If this port is blocked, bi-directional inputs is not possible.

(Windows and macOS only)

For control purposes

32768 ~ 61000

UDP

Outbound

Video data stream (e.g., BYOM, Chromecast)

WebRTC

10000 ~ 16000
50000 ~ 65000

TCP
UDP

Outbound

Communication Port

WebRTC (Pexip)

1720

TCP

Outbound

This port used WebRTC services like Pexip

WebSocket

7681

TCP

Inbound

User interface communication with Cynap (via browser)

WebSocket

7682

TCP

Inbound

User interface communication with Cynap (via fully integrated Visualizer)

vSolution Link Pro

 

 

 

 

Wake On LAN

7 / 9

UDP

Inbound
Outbound

Wake On LAN – Usually port 7 is used for sending the magic packet

DNS

53

TCP
UDP

Inbound
Outbound

DNS – This port will be used for Domain Name System. If this port is blocked, DNS service are not available

http, Cynap control

80

TCP

Inbound

This is the default port to connect to the web interface (httpd) of vSolution Link Pro.
This port will also be used when the vSolution Link Pro Management server is set in the setting.
Of this port is blocked, connection cannot be established

https, SSL
e.g. Cloud Service, Cynap control

443

TCP

Inbound

This is the default port to connect to web interface (https) of vSolution Link Pro. If this port is blocked, connection cannot be established.

SMTP

587

SMTP

Outbound

Mail Server – Port for communication with SMTP server.

Discovery Multicast

50000

UDP

Inbound

This port is used for device discovery all available Cynap and Visualizer in the network by vSolution applications (uses Multicast IP address 239.255.255.250). If this port is blocked, device discovery is not possible.

Device Discovery

50913

UDP

Inbound

This port is used for device discovery. If this port is blocked, device discovery is not possible.

For control purposes

50915

TCP

Inbound

This port is used for control purposes. If this port is blocked, no control is possible

Zoom

 

 

 

 

http

80

TCP

Outbound

For Zoom clients and meeting connector

http over TLS / SSL

443

TCP

Outbound

For Zoom clients and meeting connector

 

8801

TCP

Outbound

For Zoom clients

 

8802

TCP

Outbound

For Zoom clients

 

3478

TCP

Outbound

For Zoom clients

 

3479

UDP

Outbound

For Zoom clients

 

8801 ~ 8810

UDP

Outbound

For Zoom clients

Panopto

       

Communication to Panopto server

80

TCP

Inbound
Outbound

This port is used for http communication to the Panopto server.

Communication to Panopto server

443

TCP

Inbound
Outbound

This port is used for https communication to the Panopto server.

Streaming to Panopto server

1935

TCP

Outbound

This port is used for sending a stream to the Panopto server.