Depending on the customer's environment, it may be necessary to whitelist the domains or IP addresses listed and noted in this support article in order to ensure that your cloud environment functions smoothly.
This applies if, for example, your organisation or the organisation of your end users applies restrictive firewall rules and access to external content must be enabled.
Themen dieses Artikels
- Whitelisting
Whitelisting
What is whitelisting for?
Whitelisting ensures that unrestricted interaction and communication is possible and that your cloud instance is considered trustworthy. This measure is also necessary to ensure that important messages are received from the system.
DRACOON uses the following domains for the provision of the cloud service:
- Initially provided URL.dracoon.software: For the initial provision of the DRACOON Cloud instance.
- Initially provided URL.dracoon.cloud: Technical provision for the use of own subdomains (target for DNS CNAME records).
- Initially provided URL.s3.nbg01.de.dracoon.io: Storage endpoint for the instance-specific bucket.
DRACOON also provides a machine-readable representation of all publicly used IP addresses in JSON format at ip.dracoon.cloud:
- incoming: Target addresses for client access to the DRACOON cloud infrastructure.
- outgoing: Outgoing connections from the DRACOON Cloud to hybrid infrastructures (e.g. IDP - OpenID, Storage - S3).
- storage: Target addresses for clients for direct access to files.
These firewall rules are not usually created for specific domains but on the basis of IP addresses.
Therefore, please take the current IP addresses to be stored from the page https://ip.dracoon.cloud
Please also make sure that all sub-domains below *.dracoon.io are activated. The * serves as a placeholder for various sub-domains.
We recommend that you regularly check your whitelisting rules and compare them with the addresses listed in this support article and, in particular, the IP addresses communicated at https://ip.dracoon.cloud.
Comments
0 comments
Please sign in to leave a comment.