Have A Question?

< All Topics
Print

Are there any Networking & Firewall Requirements to run Neon?

Yes.

The following table defines connectivity required by the NEON agent workspace/softphone, as well as the NEON admin portal.  Please refer specific questions about your environment to CloudWave, such as region.

Local and Network corporate firewalls should allow all domains on below list, on the ports defined.  Corporate web accelerators and proxies should be used with caution as these can cause unpredictable delays, especially to Real-Time audio traffic.

Domain/URL allow list AWS Region Ports Direction Traffic
*.cw-neon.com All regions of NEON should allow traffic on *.cw-neon.com 443 (TCP) OUTBOUND SEND/RECEIVE
rtc*.connect-telecom.{region}.amazonaws.com Replace {region} with the Region where your Amazon Connect instance is located 443 (TCP) OUTBOUND SEND/RECEIVE
*.my.connect.aws

{myInstanceName}.my.connect.aws/ccp-v2

{myInstanceName}.my.connect.aws/api

{myInstanceName}.my.connect.aws/auth/authorize

*.static.connect.aws

*.cloudfront.net

*.awsapps.com

{myInstanceName}.awsapps.com/connect/ccp-v2

{myInstanceName}.awsapps.com/connect/api

{myInstanceName}.awsapps.com/connect/auth/authorize

*.cloudfront.net

Replace {myInstanceName} with the alias of your Amazon Connect instance 443 (TCP) OUTBOUND SEND/RECEIVE
*.telemetry.connect.{region}.amazonaws.com Replace {region} with the location of your Amazon Connect instance 443 (TCP) OUTBOUND SEND/RECEIVE
participant.connect.{region}.amazonaws.com Replace {region} with the location of your Amazon Connect instance 443 (TCP) OUTBOUND SEND/RECEIVE
*.transport.connect.{region}.amazonaws.com

 

Replace {region} with the location of your Amazon Connect instance 443 (TCP) OUTBOUND SEND/RECEIVE
{Amazon S3 bucket name}.s3.{region}.amazonaws.com Replace Amazon S3 bucket name with the name of the location where you store attachments. Replace {region} with the location of your Amazon Connect instance 443 (TCP) OUTBOUND SEND/RECEIVE
TurnNlb-*.elb.{region}.amazonaws.com

To instead add specific endpoints to your allow list based on Region, see NLB endpoints.

Replace {region} with the location of your Amazon Connect instance 3478 (UDP) OUTBOUND SEND/RECEIVE
*.awsglobalaccelerator.com GLOBAL and Region where your Amazon Connect instance is located (add GLOBAL AND any region-specific entry to your allow list) 443 (HTTPS) and 80 (HTTP) OUTBOUND SEND/RECEIVE

To reduce the list of Amazon Connect endpoints, please refer to https://docs.aws.amazon.com/connect/latest/adminguide/ccp-networking.html

Bandwidth Requirements – bandwidth utilised per active NEON call (user) is approx 100Kbps

Table of Contents
Go to Top