0

List of ips to allow on firewall

Can anyone provide list of ips/network segment which is used by Buypass to authenticate http-01 challenge ?

I think it would be great help as this can be white-listed on firewall/router level.

7replies Oldest first
  • Oldest first
  • Newest first
  • Active threads
  • Popular
    • maov
    • maov
    • 5 yrs ago
    • Answer
    • Reported - view

    Hi.
    The following segments are what our outbound communication will originate from.


    IPv4: 185.62.160.0/22

    IPv6: 2a03:520::/29

    Like 2
    • Magnus ProK

       

      What are the current IPs to whitelist? Are they still the same? This seems to indicate that they have changed

      Like
      • maov
      • maov
      • 5 yrs ago
      • Reported - view

      Elie Obeid The segments listed are correct.

      Like
    • Magnus thank you

      Like
    • Magnus I'm still getting the same problem, which ports need to be open? 80? 443? or other ports?

      Like
      • maov
      • maov
      • 4 yrs ago
      • Reported - view

       Elie Obeid 

      For future uses and changes to the ACME standards, I would recommend both TCP80 and TCP443.  HTTP-01 should use TCP80 unless there is redirects causing issues as we do not follow redirects.

      Have you verified your setup and network scheme?  Try setting up a separate instance and test with an open FW, then continue to  enable FW rules.

      Is it the FW causing issues or is there an error with the request, please check the error message received from the server and your client log data?  Send the error message received if possible.

      Like
    • Hi

       

      FYI: we added support for following of redirects during the http challenge validation.

      It is now available in production and test environments.

       

      Regards,

      Andriy

      Like
Like
  • Status Answered
  • 4 yrs agoLast active
  • 7Replies closed
  • 825Views
  • 4 Following

Buypass Official Community

This is the official community of Buypass.  A Root CA located in Norway.

Sign-up using free email domains have been blocked due to increased spam. https://community.forumbee.com/t/63zsyt/blocked-email-domains