Viz Now automatically sets up secure and functional network environments for your cloud deployments.
This section helps you understand how your instances are protected and what changes are safe with the following topics:
Viz Now Security Environment
Viz Now uses a layered security model combining:
Network Access Control Lists (NACL): Control which ports are open at the subnet level.
Security Groups: Control which IP addresses can reach each instance.
This dual approach ensures both flexibility and safety:
NACLs open the ports needed for applications to work.
Security Groups limit access to specific IPs that you define.
Default Open Ports and Services
Depending on the application and services deployed, Viz Now enables by default the following ports:
Application / Service | Protocol(s) | Port(s) | Direction | Notes |
|---|---|---|---|---|
TriCaster Vectar API | TCP | 5951 – 5952 | Ingress | For switcher control |
Controls Panels | TCP | 5958 | Ingress | For Control Surface interface |
Amazon DCV | TCP/UDP | 8443 | Ingress | For remote desktop access |
NDI Bridge | TCP/UDP | 5990 | Ingress | For video/audio streaming |
Comprimato Live Transcoder | TCP | 1935 | Ingress | For RTMP AV streaming |
Comprimato Live Transcoder | TCP / UDP | 5960 - 9000 | Ingress | For NDI |
Comprimato Live Transcoder | UDP | 30000 | Ingress | For JPEGXS |
Telos Infinity VIP | TCP / UDP | 7001 - 7016 | Ingress | Audio |
Harrison Mixbus | TCP / UDP | 5004 - 5005 | Ingress | RTP MIDI |
SRT Streaming protocol | TCP/UDP | 9000 – 9020 | Ingress | Secure video transport |
Ephemeral Ports | TCP/UDP | 49152 – 65535 | Ingress | Dynamic and temporary connections |
Ephemeral Ports | TCP/UDP | 1024 - 65535 | Egress | Dynamic and temporary connections |
ICMP | ICMP | All | Bi-directional | For ping and diagnostics |
Note: Some ports are opened only if specific services like Comprimato, Telos Infinity, or Mixbus are enabled during deployment.
Volatility of Manual Changes
Manual changes may be overwritten!
If you manually add or change firewall rules directly in the AWS Console:
Viz Now will not track those changes.
If you redeploy your space, manual changes may be lost and default settings restored.
Recommendations
Whenever possible, always use the Viz Now UI for managing access.
If you must make manual changes, document them outside of Viz Now and plan to reapply them after updates or redeployments.