Q: What are the Firewall Rules for Silo Connections?



A:  This document provides connection information, which might be needed to allow Silo to work properly from behind a firewall.  If your network utilizes a firewall to limit outbound traffic, you may need to white list our IP ranges.



Domain Names

Domain names can be broadly white-listed using a wildcard entry as shown in the following examples:


*.authentic8.com

*.a8silo.com

*.getsilo.com


Connection Type

Silo uses a TLS connection over port 443 (HTTPS). In rare instances, if you have existing network provisions for non-HTTPS traffic over port 443 (e.g. port redirect), you may not be able to connect to Silo without creating a Firewall exception for our service.


SSL Inspection Rules

If your firewall performs SSL inspection, you will need to disable this for Silo connections.


NOTE: This rule does not apply to Silo Windows Client version 2.9.13 and newer. Please see this article:

https://authentic8.freshdesk.com/a/solutions/articles/16000100713 for additional information.


External APIs

Please note that in some cases, customers may need to whitelist our External API in order to use some Silo services. The domain to be whitelisted is: extapi.authentic8.com


IPs

Please make sure to allow access to TCP port 443 to the following list of IPs.


Web Client IP (a8silo.com):

35.192.87.85

Authentic8 registered IP space:

194.32.244.0/22

171.22.200.0/22

92.119.244.0/22


Third Party Provider IPs:

13.54.16.216

13.239.146.29

35.246.2.137

35.246.47.160

104.155.106.249
130.211.64.174

104.199.169.130
104.199.158.183

104.155.196.214
104.155.196.156

104.196.50.57
104.196.45.238

104.197.151.226

8.34.212.21

104.198.108.190
104.198.102.199



Legacy IPs:

*If you are using the legacy load balancers, then you may need to white list the following IPs as well:

13.54.16.216

66.85.157.14

198.24.179.20

119.81.23.186

52.193.1.47

5.153.13.248/29

5.153.51.130



Additional Notes  

Please contact Support if you have any additional questions and/or require further information.