Page
|
10
Marquee
Technical
Guide
‐
Version
6.2.0
–
090110
11Giraffes
©2010
All
Rights
Reserved
Optimal Firewall
Configuration
1.
11Giraffes Marquee and associated products are configured to work outbound through ports
80, 443 and 22. Our products do not listen for, nor do they require, any inbound connections.
Important Note: Steps 2 and 3 are discouraged unless absolutely necessary because such IP
ranges need to be periodically audited and modified, creating additional maintenance to your
network. These changes are rare, but they may be necessary to continue to provide the maximum
performance for the Marquee family of applications. Maintenance and failover events may cause you
to connect to servers within any of the ranges.
2.
If your firewall includes a content or application data scanning filter, this may cause blocking
or latency, which would be indicated in the log files for the filter. To address this problem, verify
the below IP ranges will not be scanned or filtered by content or application data scanning filters
by specifying exception IP ranges that will not be filtered.
3.
If your security policy requires you to specify explicit IP ranges, then configure your firewall to
limit port 80, 443 and 22 destination IP addresses to only the 11Giraffes ranges listed below.
Additional detailed information on firewalls and security vulnerability evaluation process is
available upon request.
Server / Datacenter IP Addresses for Use in Firewall Configurations
Equivalent Specifications in 3 Common Formats
Assigned Range
by Block*
Numeric IP Address Range
Netmask Notation
CIDR Notation
Block 1
216.27.66.144 - 216.27.66.159
216.27.66.144 255.255.255.240
216.27.66.144/28
Block 2
74.213.132.16 - 74.213.132.31
74.213.132.16 255.255.255.240
74.213.132.16/28
Block 3
74.213.132.224 - 74.213.132.239 74.213.132.224
255.255.255.240 74.213.132.224/28
