Can Not Access / Sync Cloud - IT Allowlist

Issue description: accessing website https://www.dental3dcloud.com/ or software does not load/launch correctly. We access from addresses 193.104.41.0/24.

Root Cause: Network restrictions blocking required outbound connections to Alibaba Cloud and Shining3D services, specifically over ports 2023 and 8883, combined with reliance on dynamic IP infrastructure.

Resolution: Implement domain-based firewall allow rules and permit outbound TCP traffic on ports 80, 443, 8883, 1883, 8084, and 2023 to required cloud services.

1.    Required Firewall Rules - Allow by DOMAIN

•    *.dental3dcloud.com

•    *.shining3d.com

•    *.aliyun.com

•    *.aliyuncs.com

•    mqtt.dental3dcloud.com

•    cdnimg.shining3d.com

2.    Alibaba Cloud IP Examples 

•    47.88.29.90 

•    47.88.111.42 

•    47.246.22.194 

•    8.209.99.169 

3.    Direct Asia IP connections on custom port (2023) Examples 

•    101.200.34.79:2023

•    120.79.12.238:2023

•    47.110.42.55:2023

•    47.96.154.69:2023

•    8.140.201.23:202 

NOTE: IP’s are for example only, they are dynamic and subject to change. 

Allow by Domain is recommended for best performance/connectivity.

4.    MQTT Broker

•    mqtt.dental3dcloud.com → port 8883, 1883 ,8084

•    Required for: Sync, Job status, Possibly device communication

Folder / Paths to add to whitelist on Antivirus Software if enabled

•    Intraoral Scanner

        o    C:\Shining3D\DentalLauncher 

•    Desktop Scanner 

        o    C:\Shining3D\DentalScan

•    Facial Scanner

        o    C:\FSLauncher

•    Order Save Path

        o    C:\DentalOrder

•    Algorithm bug files 

        o    C:\ShiningWork

Common Enterprise Blockers

•    Port blocked

        o    1883、8883、8083 often not allowed by default 

•    SSL inspection

        o    Breaks MQTT TLS, TCP, UDP, WSS  handshake 

•    Geo restrictions

        o    Broker may resolve to Alibaba Cloud's Silicon Valley node datacenter