Firewall ports requirements for smart switches

Hi, I am using multiple Tinxy Smart switches with 6 and 16A for my home automation. So far the performance is really good. The OTA updates we get are updating as well. At present, I am putting my IOT network behind firewall for security reasons. At present I am allowing the entire subnet to public network without any port/protocol blocks. I am bit skeptical to keep this way due to obvious reasons. Can you share the protocol and ports that I have to allow in my firewall so I can modify firewall rules accordingly? Thanks in advance.

Tinxy modules need to connect to 1883 port on our servers. That’s all required for an outbound connection.

Tinxy mobile app requires a lot more ports to connect our servers.