The Kontakt.io Portal Light connects to a facility's existing Wi-Fi network to send data to and download configuration data from Kio Cloud. To allow their connectivity to Kio Cloud, there are specific requirements that need to be met.
The following provides the supported network communication protocols and the network firewall and port requirements.
To meet network security and protocol standards, the Portal Light supports an array of options for secure network connectivity.
-
Wireless networking protocols: 802.11 b/g/n (802.11n up to 150 Mbps) 2.4 GHz ~ 2.5 GHz
-
Wireless security protocols: Open, WEP, WPA (TKIP & AES), WPA2 (TKIP & AES) - Personal and Enterprise modes
-
Wireless authentication protocols: EAP-TLS, EAP-TTLS (MSCHAPv2), PEAP v0 (MSCHAPv2)
-
Network communication protocols: Hypertext Transfer Protocol Secure (HTTPS)/TLS 1.2
-
IP addressing: Dynamic Host Configuration Protocol (DHCP)
-
Data Packet Size: typically less than 6 kilobytes (kB) per second
The Kio Cloud platform runs on the Amazon Web Services (AWS) cloud infrastructure. Organizations with network firewalls in place must proactively allow outbound network communication and file downloads through specific Kio Cloud Domains and URLs.
Kio Cloud is a high-availability (HA) platform that may change IP addresses at anytime. Therefore, the use of firewall IP addressing filtering is not supported.
If the firewall support wildcards:
US (United States) environment |
UK (United Kingdom) environment |
|
---|---|---|
Domain filters |
*.api.kontakt.io *.event.cloud.us.kontakt.io *.software.kontakt.io *.gateway.cloud.us.kontakt.io |
*.dm-api.cloud.uk.kontakt.io *.event.cloud.uk.kontakt.io *.software.kontakt.io *.gateway.cloud.uk.kontakt.io |
URL filters |
https://*.kontakt.io |
https://*.kontakt.io |
If the firewall does not support wildcards:
US (United States) environment |
UK (United Kingdom) environment |
|
---|---|---|
Domain filters |
api.kontakt.io event.cloud.us.kontakt.io software.kontakt.io gateway.cloud.us.kontakt.io |
dm-api.cloud.uk.kontakt.io event.cloud.uk.kontakt.io software.kontakt.io gateway.cloud.uk.kontakt.io |
URL filters |
https://api.kontakt.io https://event.cloud.us.kontakt.io https://software.kontakt.io https://gateway.cloud.us.kontakt.io |
https://dm-api.cloud.uk.kontakt.io https://event.cloud.uk.kontakt.io https://software.kontakt.io https://gateway.cloud.uk.kontakt.io |
Note
api.kontakt.io | dm-api.cloud.kontakt.io > Kio Cloud APIs, SDKs, Stream integration, Kio Setup Manager
event.cloud.us.kontakt.io | event.cloud.uk.kontakt.io > Portal Light data transmission
software.kontakt.io > Portal Light firmware distribution updates
gateway.cloud.us.kontakt.io | gateway.cloud.uk.kontakt.io > Proxy server for the apiHost and dataHost
A Portal Light communicates to Kio Cloud over a facility's network using the HTTPS protocol. Data is encrypted in transit and all sensitive data is encrypted at rest. An outbound HTTPS connection is established by a Portal Light and once completed the IP address is released.
The following ports are required to be open to allow for outgoing communication from the facility network.
-
Port TCP 443: required to be open to allow Hypertext Transfer Protocol over TLS/SSL (HTTPS) communication with Kio Cloud
-
Port UDP 123: required to be open to allow Portal Lights to connect to an external Network Time Protocol (NTP) time source (pool.ntp.org; time.google.com)
Note
Use of an internal NTP server is also supported; configuration is completed by Kontakt.io.