{"id":6125,"date":"2025-09-05T09:20:24","date_gmt":"2025-09-05T07:20:24","guid":{"rendered":"https:\/\/ewattch-documentation.com\/?page_id=6125"},"modified":"2025-09-05T09:22:03","modified_gmt":"2025-09-05T07:22:03","slug":"guide-communication-et-reseau-vers-the-things-cloud-english","status":"publish","type":"page","link":"https:\/\/ewattch-documentation.com\/?page_id=6125&lang=en","title":{"rendered":"Guide : Communication et r\u00e9seau vers The Things Cloud &#8211; English"},"content":{"rendered":"<div class=\"wpb-content-wrapper\"><p>[vc_row full_width=&#8221;stretch_row&#8221; enable_grid_lines=&#8221;&#8221;][vc_column][vc_column_text css=&#8221;&#8221;]<\/p>\n<h1 style=\"text-align: center;\">Communication and Networking to The Things Cloud<\/h1>\n<p>[\/vc_column_text][vc_empty_space]<div class=\"mkdf-separator-holder clearfix  mkdf-separator-center mkdf-separator-full-width\">\n\t<div class=\"mkdf-separator\" style=\"border-color: #e5e5e5\"><\/div>\n<\/div>\n[vc_column_text css=&#8221;&#8221;]<\/p>\n<h2>Purpose of the document<\/h2>\n<p>[\/vc_column_text][vc_column_text css=&#8221;&#8221;]<\/p>\n<p class=\"p1\">This sheet summarizes the network recommendations (firewall &amp; router) required for the proper operation of the <strong>Gateway Light<\/strong>.<br \/>\nIt is intended for IT teams to correctly configure the network infrastructure.<\/p>\n<p>[\/vc_column_text][vc_column_text css=&#8221;&#8221;]<\/p>\n<h2>Basic Principles<\/h2>\n<p>[\/vc_column_text][vc_column_text css=&#8221;&#8221;]<\/p>\n<ul>\n<li class=\"p1\">The gateway initiates all its communications to the cloud (*outbound only*).<\/li>\n<li class=\"p1\">No incoming ports need to be opened.<\/li>\n<li class=\"p1\">Protocols used: MQTT over TLS, HTTPS, NTP, DNS.<\/li>\n<\/ul>\n<p>[\/vc_column_text][vc_empty_space][vc_column_text css=&#8221;&#8221;]<\/p>\n<h2>Network recommendations<\/h2>\n<p>[\/vc_column_text][vc_column_text css=&#8221;&#8221;]<\/p>\n<h5><strong>Firewall<\/strong><\/h5>\n<ul>\n<li><strong>Allow the gateway<\/strong> to connect outbound on <strong>TCP 443<\/strong> (HTTPS) to <strong>*.thethings.network<\/strong>, <strong>*.thethings.industries<\/strong> and <strong>*.cloud.thethings.industries<\/strong><\/li>\n<li><strong>Allow the gateway<\/strong> to connect outbound on <strong>TCP 8883<\/strong> (or fallback 443) for <strong>secure MQTT (mTLS)<\/strong> traffic<\/li>\n<li><strong>Allow the gateway<\/strong> to connect outbound on <strong>UDP 123<\/strong> to <strong>NTP servers<\/strong><\/li>\n<li><strong>Allow the gateway<\/strong> to connect outbound on <strong>UDP 53<\/strong> to the configured <strong>DNS servers (internal or public)<\/strong><\/li>\n<li>We recommend <strong>whitelisting the listed domains<\/strong> in the firewall to avoid blocking<\/li>\n<\/ul>\n<h5><strong>Addressing<\/strong><\/h5>\n<ul>\n<li>In <strong>DHCP<\/strong>, ensure the gateway correctly receives network parameters: <strong>default gateway<\/strong>, <strong>DNS<\/strong><\/li>\n<li>In <strong>Static IP<\/strong>, configure parameters properly and set DNS if needed to <strong>8.8.8.8<\/strong> (Google DNS)<\/li>\n<\/ul>\n<h5><strong>DNS<\/strong><\/h5>\n<ul>\n<li>The gateway must be able to <strong>resolve domain names<\/strong> via internal or public DNS servers<\/li>\n<li>Example: access possible to <strong>8.8.8.8 port 53<\/strong> (Google DNS)<\/li>\n<li>The domains <strong>*.thethings.network<\/strong> and <strong>*.thethings.industries<\/strong> must be reachable<\/li>\n<\/ul>\n<h5><strong>Proxy<\/strong><\/h5>\n<ul>\n<li>If an HTTPS proxy is used, <strong>it must allow the gateway<\/strong> to communicate with the listed domains without TLS inspection<\/li>\n<li><strong>Authenticated proxies<\/strong> are not supported<\/li>\n<\/ul>\n<p>[\/vc_column_text][vc_empty_space][\/vc_column][\/vc_row]<\/p>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>[vc_row full_width=&#8221;stretch_row&#8221; enable_grid_lines=&#8221;&#8221;][vc_column][vc_column_text css=&#8221;&#8221;] Communication and Networking to The Things Cloud [\/vc_column_text][vc_empty_space][vc_column_text css=&#8221;&#8221;] Purpose of the document [\/vc_column_text][vc_column_text css=&#8221;&#8221;] This sheet summarizes the network recommendations (firewall &amp; router) required for the proper operation of the Gateway Light. It is intended [&hellip;]<\/p>\n","protected":false},"author":3,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-6125","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/ewattch-documentation.com\/index.php?rest_route=\/wp\/v2\/pages\/6125","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ewattch-documentation.com\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/ewattch-documentation.com\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/ewattch-documentation.com\/index.php?rest_route=\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/ewattch-documentation.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6125"}],"version-history":[{"count":2,"href":"https:\/\/ewattch-documentation.com\/index.php?rest_route=\/wp\/v2\/pages\/6125\/revisions"}],"predecessor-version":[{"id":6128,"href":"https:\/\/ewattch-documentation.com\/index.php?rest_route=\/wp\/v2\/pages\/6125\/revisions\/6128"}],"wp:attachment":[{"href":"https:\/\/ewattch-documentation.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6125"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}