Q: What are the Firewall Rules for Silo Connections?
A: This document provides connection information, which might be needed to allow Silo to work properly from behind a firewall. If your network utilizes a firewall to limit outbound traffic, you may need to white list our IP ranges.
Domain Names
Domain names can be broadly white-listed using a wildcard entry as shown in the following examples:
*.authentic8.com
*.a8silo.com
*.getsilo.com
Connection Type
Silo uses a TLS connection over port 443 (HTTPS). In rare instances, if you have existing network provisions for non-HTTPS traffic over port 443 (e.g. port redirect), you may not be able to connect to Silo without creating a Firewall exception for our service.
SSL Inspection Rules
If your firewall performs SSL inspection, you will need to disable this for Silo connections.
NOTE: This rule does not apply to Silo Windows Client version 2.9.13 and newer. Please see this article:
https://authentic8.freshdesk.com/a/solutions/articles/16000100713 for additional information.
External APIs
Please note that in some cases, customers may need to whitelist our External API in order to use some Silo services. The domain to be whitelisted is: extapi.authentic8.com
IPs
Please make sure to allow access to TCP port 443 to the following list of IPs.
Web Client IP (a8silo.com):
35.192.87.85
Authentic8 registered IP space:
194.32.244.0/22
171.22.200.0/22
92.119.244.0/22
Third Party Provider IPs:
13.54.16.216
13.239.146.29
35.246.2.137
35.246.47.160
104.155.106.249
130.211.64.174
104.199.169.130
104.199.158.183
104.155.196.214
104.155.196.156
104.196.50.57
104.196.45.238
104.197.151.226
8.34.212.21
104.198.108.190
104.198.102.199
Legacy IPs:
*If you are using the legacy load balancers, then you may need to white list the following IPs as well:
13.54.16.216
66.85.157.14
198.24.179.20
119.81.23.186
52.193.1.47
5.153.13.248/29
5.153.51.130
Additional Notes
Please contact Support if you have any additional questions and/or require further information.