Skip to main content

Which port should be open to allow remote access to the Operator Client from the Management Server?

Question

Which port should be open to allow remote access to the Operator Client from the Management Server?

Answer

The port that must be open to allow remote access to the Operator Client from the Management Server is 5322 (SSH). This enables remote access to live images, recordings, and the export of recordings via the Operator Client.

Important: This port should only be open within the local network (LAN). For remote access over the Internet, always use secure connections such as a VPN.

For more information, see the “Used Ports” and “SSH Tunneling” chapters in the BVMS Configuration Manager manual.

 

About SSH Tunneling

BVMS provides remote connectivity utilizing Secure Shell (SSH) tunneling.

SSH tunneling constructs an encrypted tunnel established by an SSH protocol/socket connection. This encrypted tunnel can provide transport to both encrypted and unencrypted traffic. The Bosch SSH implementation also utilizes Omni-Path protocol, which is a high-performance low latency communications protocol developed by Intel.

Technical aspects and restrictions

– SSH tunneling utilizes port 5322. This port cannot be modified.

– The SSH Service must be installed on the same server as the BVMS Management Server.

– (Enterprise) user accounts must have a configured password. (Enterprise) user accounts without a password cannot log on utilizing a SSH connection.

– Local storage cameras do not support SSH connection.

– Configuration Client cannot connect remotely via SSH. Configuration Client connection must be done via port mapping.

– Operator Client checks connection with SSH service every 15 seconds. If the connection is interrupted; Operator Client retests the connection every minute.

Port mapping

Configure one port forwarding for the BVMS Management Server to utilize port 5322 for both internal and external connections.

This is the only port mapping entry that you need to make for the entire system. BVMS port mapping is not required.

Encrypted communication

After the connection is established via a SSH tunnel, all communications between the BVMS Management Server and a remote client are encrypted.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close