Products
This document documents the ports required for the following products
- SAFR Desktop
- SAFR Mobile (Android or iOS)
- SAFR Server Web Console
- SAFR SCAN (All models)
- SAFR Camera (SC800)
SAFR Cloud
SAFR Clients require connection to the following endpoints
| OpenAPI Docs | SAFR Cloud URL | SAFR Server Ports |
|---|---|---|
| SAFR Computer Vision API (COVI) | covi.real.com | 8080, 8081 |
| SAFR Events Server API (CVEV) | cv-event.real.com | 8082, 80813 |
| SAFR VIRGA Server API (VIRGA) | virga.real.com | 8084, 8085 |
| SAFR Object Server API (CVOS) | cvos.real.com | 8086, 8087 |
All of the endpoints for SAFR are HTTPS over 443 (SSL).
On Premises SAFR Server
Below covers all ports that need to be open on your firewall for HTTPS traffic with REST API payloads for SAFR to fully function.
| Source | Destination | Source Port | Destination Port | Protocol |
| SAFR Mgmt Software, SAFR SCAN, SAFR Camera | SAFR Server | - | 8080, 8082, 8084, 8086 | TCP/HTTP |
| SAFR Mgmt Software, SAFR SCAN, SAFR Camera (Secure) | SAFR Server | - | 8081, 8083, 8085, 8087 | TCP/HTTPS |
| Web Browser (SAFR Server Web Console) | SAFR Server | - | 8090 | TCP/HTTP |
| Secure Web Browser (SAFR Server Web Console) | SAFR Server | - | 8091 | TCP/HTTPS |
| Web Browser (SAFR SCAN/Camera Web Console) | SAFR SCAN/Camera | - | 32182 | TCP/HTTP |
| Secure Web Browser (SAFR SCAN/Camera Web Console) | SAFR SCAN/Camera | - | 32181 | TCP/HTTPS |
| SAFR Finder | SAFR SCAN, SAFR Camera | - | 1900 | UDP/SSDP |
| SAFR Finder | SAFR SCAN, SAFR Camera | - | 1901 | TCP/SSDP |
| SAFR Server DB Sync (Clustering only) | SAFR Server | - | 27017 | TCP |
| SAFR Server Load Balancing (Clustering only) | SAFR Server | - | 8080, 8082, 8084, 8086 | TCP/HTTP |
| SAFR Server Load Balancing (Clustering only) | SAFR Server | - | 8081, 8083, 8085, 8087 | TCP/HTTPS |
- Table indicates default prots. Replace with customized ports if these are modified.
- "SAFR Server" to "SAFR Server" is communication between servers. This does not apply if not using SAFR Clustering.
- 32181 is for remote video preview and optional
- 8090 and 8091 are for SAFR Server Web Console (browser interface)
- All other ports are for other SAFR Clients
Validating Ports
After getting required ports enabled by your Networking team, you can use the following processes to validate.
Note that validation requires ability to use a Web browser or command line terminal on the source computer. This is not possible on SAFR SCAN. SAFR SCAN performs a network connectivity which is described below.
Validate Connections from a PC
To test connectivity from a PC, use the healthcheck URLs as follows:
https://SERVERIP:<PORT>/version (for all except 8084 and 8085)
https://SERVERIP:<PORT>/health for 8084 and 8085
Type the above into a browser for each port. You should get back some JSON data that includes version like the following:
{"version":"3.20.1014","createAt":"Fri Dec 01 21:07:31 PST 2023","createdBy":[email protected]; Fri Dec 01 21:07:31 PST 2023,"versionedComponents":{"FaceImageStorageProvider":"1.0.22","Facepeg":"1.0.16.2","Security":"5.0.677","SPI":"1.0.37"},"profiles":["RCV-F","RCV-O","ARGUS","EVENTS"]}Validate Connections from SAFR SCAN
SAFR SCAN performs a network connectivity check at startup and reports results in form of an error message if connection cannot be established to any one of the ports on SAFR Server or SAFR Cloud.
To connect to SAFR Server, go to System > SAFR Server and select either "SAFR Server", "SAFR Cloud"
If all ports or even just COVI Port (8081 by default) is inaccessible, following message is returned upon attempting connection:
Server appears to be offline. Please try again later.
Example:
If COVI Port is open but other ports are not, error message is specifci to the port that is not open. This may be any of the following errors.
"Error: EVENT Offline"
"Error: OBJECT Offline"
"Error: VIRGA Offline"
Only the first error encountered is shown.
Example:
If provided credentials are incorrect, error message will be as follows:
