This article refers to all Amwell Proprietary Hardware devices - C250, C500, TV Kit 100
Amwell Hospital Carepoints must be placed on a network that follows the rules listed below to allow for the appropriate incoming and outgoing traffic. Please supply your network administrator with these details.
The following mandatory firewall permissions are needed for application functionality.
- Firewall and Domain Permissions:
- See the table below for specific domains and IP’s (where available) that need to be whitelisted on your network
- The firewall must be configured for outbound HTTP/HTTPS requests on ports listed in the table below
Amwell Hospital Carepoints employ an explicit firewall allow-listing protocol that restrict all traffic on the
device to specific domains and ports.
|Standard web, redirect to HTTPS||*.avizia.com / *.avizia.io||TCP||80||WebRTC calls, case creation, American Well Clinical Module||Outgoing, established|
*.avizia.com / *.avizia.io
|TCP||443||Secure WebRTC calls||Outgoing, established|
|Mandatory||Update Service||*.s3.amazonaws.com||TCP||443||Application Update Service||Outgoing, established|
Google DNS Servers:
|UDP||53||Domain Name Service||Outgoing|
|UDP||80, 443||Antivirus Signature Database updates (ClamAV Antivirus)||Outgoing|
Network Time Protocol
Preferred Media Servers, best way to whitelist all servers.
|Mandatory - Select either Preferred Media servers (recommended) or STUN/TURN servers.||
Preferred Media (RTP / RTCP )
||UDP & TCP||
|Use for best performance and quality||Outgoing, established|
||UDP & TCP||443, 3478 (UDP & TCP) 5349 (TCP)||Reduces number of ports required, however, increases connection time.||Outgoing, established|
2/19/21 Update: Added IP addresses for Conference Servers in Bold.
* Fail-over in case 40000-49999 cannot establish connection.
** If using the Amwell Hospital Carepoint outside of the United States, please consult your Implementation Manager.
† For the most restrictive networks. Note that you will see a performance degradation in video