Select your cookie preferences

We use essential cookies and similar tools that are necessary to provide our site and services. We use performance cookies to collect anonymous statistics, so we can understand how customers use our site and make improvements. Essential cookies cannot be deactivated, but you can choose “Customize” or “Decline” to decline performance cookies.

If you agree, AWS and approved third parties will also use cookies to provide useful site features, remember your preferences, and display relevant content, including relevant advertising. To accept or decline all non-essential cookies, choose “Accept” or “Decline.” To make more detailed choices, choose “Customize.”

Preferences
Contact Us
Feedback
AWS Documentation
Create an AWS Account

Securing your network

PDF
RSS
Focus mode
Securing your network - Amazon Monitron

Amazon Monitron is no longer open to new customers. Existing customers can continue to use the service as normal. For capabilities similar to Amazon Monitron, see our blog post.

Amazon Monitron is no longer open to new customers. Existing customers can continue to use the service as normal. For capabilities similar to Amazon Monitron, see our blog post.

In order to allow your Amazon Monitron gateways to send data back to AWS, you should allow the following with regard to your local network traffic:

  • Protocol UDP, port 53 - standard DNS port

  • Protocol UDP, ports 67 and 68 - standard DHCP ports

  • TCP ports 443 and 8883

  • For Amazon Monitron gateways commissioned before 19th January, 2024:

    • Domains ending in *.amazonaws.com

  • For Amazon Monitron gateways commissioned after 19th January, 2024:

    • Asia Pacific (Sydney) (ap-southeast-2) – 54.79.215.104 and 54.79.23.89

    • Europe (Ireland) (eu-west-1) – 54.72.131.46, 34.251.27.192, and 52.213.71.97

    • US East (N. Virginia) (us-east-1) – 3.215.69.205, 52.86.131.66, and 18.210.44.199

Note

There's no regression with new static IPs being enabled by default for previously commissioned devices as they have already been allow listed for IP domains ending in *.amazonaws.com (which already includes the new static IP domain of amazonaws.com). Decommissioning and recomissioning a gateway will switch it to static IP. You can't revert a gateway network configuration from a static IP to a dynamic IP.

If you are using an Android mobile device to provision your gateways and sensors, then you should allow the following with regard to your local network traffic:

  • TCP ports 443, 5228, 5229, and 5230

  • Domains ending in *.google.com, *.googleapis.com

  • Any ports required by your telecom provider

  • TCP port 5094 for SSL communications used on

    Vodafone devices

If you are using an Apple mobile device to provision your gateways and sensors, then you should allow the following with regard to your local network traffic:

Note: Amazon Monitron, Android, and Apple do not (per their respective documentation) require the following ports to be open:

  • UDP port 443

  • TCP port 80

PrivacySite termsCookie preferences
© 2025, Amazon Web Services, Inc. or its affiliates. All rights reserved.