Page Comparison

RetailNext operates two separate services: a global service based in the United States (denoted as Global Cloud Service) and a separate service operated entirely within China (denoted as China Cloud Service). This page details the comprehensive network requirements for these services.

For a quick reference guide to the Basic Network Requirements, click here.

Store Network

RetailNext Cloud Service

Admin Access

Initial setup (HTTP): TCP 80 →

Discovery (mDNS): UDP 5353 →

Discovery (UPnP): TCP 1900 →

IP Cameras

Video (RTP/RTSP): TCP 554 ←, UDP →

Video (HTTP): TCP 80 ←

Store Appliance

Image Modified

Cloud Service

Management: TCP 8278 →

Required Hosts (Global):

104.154.145.235
52.3.174.227
52.70.13.25
52.70.45.171

The addresses in gray must be allowed today but will be phased out in 2021.

China: Static IP addresses are not used. Connections will be made to hosts with the retailnextchina.net domain.

Note: all devices require access to public DNS (TCP/UDP 53 →)

Admin Access

Initial setup (HTTP): TCP 80 →

Discovery (mDNS): UDP 5353 →

Discovery (UPnP): TCP 1900 →

Power

IEEE 802.3af PoE at 15.4W

Aurora

Image Modified

Cloud Service

Management: TCP 8278 →

Required Hosts (Global):

104.154.145.235
52.3.174.227
52.70.13.25
52.70.45.171

The addresses in gray must be allowed today but will be phased out in 2021.

China: Static IP addresses are not used. Connections will be made to hosts with the retailnextchina.net domain.

Note: all devices require access to public DNS (TCP/UDP 53 →)

Admin Access

Initial setup (HTTP): TCP 80/443 →

Stereo Sensors

Image Modified

Cloud Service

Data delivery (HTTPS): TCP 443 →

Required Hosts (Global):

35.244.170.41 (*.camera.ops.retailnext.net)
52.1.129.154
52.200.164.173
52.200.164.163
(*.camera.retailops.io)

NTP: UDP 123 →
Xovis mgmt.: TCP 80/443 → 34.102.240.84, 52.3.14.123
Audit video (SFTP): TCP 22 → transfers.retailnext.net
Brickstream mgmt.: TCP 2375 → 35.239.184.87, 52.6.255.47
Audit video (FTP) TCP 21 → transfers.retailnext.net

The addresses in gray must be allowed today but will be phased out in 2021.

China: these devices are not used

Note: all devices require access to public DNS (TCP/UDP 53 →)

Admin Access

Initial setup (HTTP): TCP 80/443 →

Open-Mesh Switches

Image Modified

Cloud Service

Management: TCP 80/443 →

Required Hosts (Global):

cloud-switch.cloudtrax.com
connkeeper.cloudtrax.com
files.cloudtrax.com
dev.cloudtrax.com
54.245.115.10
35.163.125.115
If allowed, wildcard *.cloudtrax.com is preferred

China: these devices are not used

Note: all devices require access to public DNS (TCP/UDP 53 →)

Aurora & Store Appliances

...

RetailNext also offers the capability of streaming recorded video directly from the store appliance or Aurora over RTMPS on TCP port 9800, which is implemented with WebRTC data channels. This allows users in the store to play back videos over the local network instead of the WAN connection. Use of this port will be phased out by the end of 2020.

As mentioned above, some older IP video devices may also require the store appliance to accept RTP/UDP data on any port.

Aurora & Store Appliance Network Summary

Service	Protocol	Port	Direction	Destination	Notes
Sensor control and data delivery	Proprietary	TCP 8278	Outbound	RetailNext cloud service	Requires public DNS
Administrative interface	HTTP/HTTPS	TCP 80/443	Inbound	-
Video retrieval over RTSP	RTSP	TCP 554	Outbound	IP video cameras/encoders	Ports may vary by product
Video retrieval over HTTP	HTTP	TCP 80	Outbound	IP video cameras/encoders	Ports may vary by product
Legacy video retrieval	RTP	UDP high ports	Inbound	-
Discovery	UPnP	UDP 1900	Inbound	-
Discovery	mDNS	UDP 5353	Inbound	-

User Access & Data Integration

All connections for the China Cloud Service will be made to hosts with the retailnextchina.net domain.

End User Access

Protocol

Port

Direction

Destination (Global)

Notes

Browser-based UI

HTTPS

TCP 443

👤 → ☁

*.cloud.retailnext.net

For load balancing, capacity expansion,
and high availability, we do not have a static
list of the IP addresses for these services.

Customers will need to allow Internet access
on 443

and 9800

.
	Video playback

RTMPS

WS

TCP 9800

TCP 443

👤 → ☁

video.retailops.io

*.cloud.retailnext.net

In-store video playback

RTMPS

WS

TCP 9800
TCP 443

Data Integration	Protocol	Port	Direction	Destination	Notes
over WebRTC Data Channel	Coming Soon	👤 → Store network	Store Appliance	Configuration details are coming soon
Email	Email	-	☁ → 👤	-	Reports, notifications, and user account management Customers will need to allow mail from `retailnext.net` delivered via `mg.retailnext.net`.
Query API	HTTPS	TCP 443	→ ☁	*.api.retailnext.net	For load balancing, capacity expansion, and high availability, we do not have a static list of the IP addresses for this service.
POS, staffing, store hours, and other file uploads	HTTPS SFTP	TCP 443 TCP 2022

TCP 22

→ ☁	*.upload.ops.retailnext.net sftp.ops.retailnext.net

*.pos.retailops.io
*.staff.retailops.io

HTTPS uploads are preferred over SFTP

HTTPS: 35.244.192.136, 35.244.228.205
SFTP: 34.68.22.227, 35.244.228.100

52.5.223.34
52.41.71.27
52.23.88.204
52.87.95.219
52.43.11.78
52.207.54.215

Security events

TCP 443

→ ☁

*.security-events.ops.retailnext.net

*.security.retailops.io

POS Integration	Protocol	Port	Direction	Destination	Notes
	35.244.170.41
Health monitoring alerts	Email	-	☁ →	-	Customers will need to allow mail from `retailnext.net` delivered via `mg.retailnext.net`.
Lightspeed, Vend, Shopify, Square	API	-	☁ → ☁	-	Requires OAuth setup

Versions Compared

Old Version 32

New Version 33

Key

Aurora & Store Appliances

Aurora & Store Appliance Network Summary

User Access & Data Integration