Hi,
I don’t want to have to open all UDP ports for all traffic, but restrict the domains and IPs in my firewall.
Thanks
Robin
Depends on your country.
I had issues with my HB2 (less so with 3) until I made sure that they could resolve:
eufylife.com
zhixin-security-eu.s3.eu-central-1.amazonaws.com
security-app-uk.myshopify.com
The 2nd/3rd are clearly region specific.
I run various DNS security/blockers and until HB2 could resolve via quad9 (9.9.9.9) I had issues. HB3 is less problematic.
Ideally, run your own DNS filter (like pihole) and log DNS traffic to identify what it talks to, that’s what I did 
Hi Pete,
thank you. I’m located in Germany.
I found it hard to figure out which connection now belongs to HB2, as our network structure is suitably complex and I can’t track that directly.
In my case this server:
http://security-app-uk.myshopify.com
is probably
http://security-app-eu.myshopify.com
By the way, is myshopify.com correct?
Looks legit, it’s a domain you apply for so that you can sell merchandise mainly, it offers tools to make store front websites.
I can see it being used for the Explore button on the eufy App. No idea why the HB and cameras need access it…
I have tested the mentioned domains. In total I have gathered this list on the web:
cdn-eu.eufylife.com
eu-central-1.elb.amazonaws.com
zhixin-security-eu.s3.eu-central-1.amazonaws.com
eufylife.com
security-app-eu.eufylife.com
security-app-eu.myshopify.com
security-app.eufylife.com
Unfortunately, there still seems to be something missing. Does anyone else have a tip? As I said, unfortunately I can’t check the traffic directly.
Thanks Robin