Troubleshooting
      Back to home
      1. Support Center
      2. FAQs
      3. Troubleshooting

      Firewall configuration to allow SwipedOn access

      Details you will need to configure your corporate firewall

      In corporate environments that do not allow outgoing TCP connections through the firewall, the firewall will need to be configured to allow the SwipedOn iPad or Android tablet app to connect to the SwipedOn platform.

      SwipedOn is a cloud-based platform, and these IP addresses in use are likely to change over time as the cloud provider, Amazon Web Services (AWS), updates its infrastructure. This page will also be updated when SwipedOn endpoints change.

      IT administrators can choose to allow access to the list of possible endpoint addresses, which is large and may allow traffic to platforms other than SwipedOn, but will need to be updated less frequently. Alternatively, they can configure the firewall to allow connections to the current SwipedOn endpoints only. Still, they will need to update this periodically (and different locations are likely to require different access).

      Firewalls will need to be configured to allow access to both SwipedOn global infrastructure, and the infrastructure specific to the selected data hosting region.

      Method A: allow the minimum access, which may change

      1. For all SwipedOn accounts

      Perform a DNS lookup for these host names:

      api.swipedon.com
      rest.swipedon.com
      secure.swipedon.com
      socket.swipedon.com

      Allow TCP access from the device running the SwipedOn app to the resolved IP addresses on ports 80 and 443.

      2. Also allow traffic for your data hosting region

      Perform DNS lookups for hosts for your specific region:

      Australia

      api-au.swipedon.com
      rest-au.swipedon.com
      secure-au.swipedon.com
      socket-au.swipedon.com

       

      Canada

      api-ca.swipedon.com
      rest-ca.swipedon.com
      secure-ca.swipedon.com
      socket-ca.swipedon.com

      Germany

      api-de.swipedon.com
      rest-de.swipedon.com
      secure-de.swipedon.com
      socket-de.swipedon.com

       

      		 London 
      api-gb.swipedon.com
      rest-gb.swipedon.com
      secure-gb.swipedon.com
      socket-gb.swipedon.com

      Singapore

      api-sg.swipedon.com
      rest-sg.swipedon.com
      secure-sg.swipedon.com
      socket-sg.swipedon.com

       

      United States

      api-us.swipedon.com
      rest-us.swipedon.com
      secure-us.swipedon.com
      socket-us.swipedon.com

      Allow TCP access from the device running the SwipedOn app to the resolved IP addresses on port 443.

      Method B: allow general access to SwipedOn cloud endpoints

      AWS maintains a list of its services and network addresses. You can query this list to get a list of the IP address ranges that could be used. These instructions will fetch both IPv4 and IPv6 network blocks.

      Linux or MacOS

      1. You'll need the jq utility installed, with curl or an alternative http client.

      2. Fetch the global IP address ranges required for your data hosting region:

      Australia

      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.prefixes[] | select(.region|test("GLOBAL|us-east-2|ap-southeast-2")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ip_prefix'
      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.ipv6_prefixes[] | select(.region|test("GLOBAL|us-east-2|ap-southeast-2")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ipv6_prefix'

      Canada

      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.prefixes[] | select(.region|test("GLOBAL|us-east-2|ca-central-1")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ip_prefix'
      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.ipv6_prefixes[] | select(.region|test("GLOBAL|us-east-2|ca-central-1")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ipv6_prefix'

      Germany

      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.prefixes[] | select(.region|test("GLOBAL|us-east-2|eu-central-1")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ip_prefix'
      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.ipv6_prefixes[] | select(.region|test("GLOBAL|us-east-2|eu-central-1")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ipv6_prefix'

      London

      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.prefixes[] | select(.region|test("GLOBAL|us-east-2|eu-west-2")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ip_prefix'
      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.ipv6_prefixes[] | select(.region|test("GLOBAL|us-east-2|eu-west-2")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ipv6_prefix'

      Singapore

      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.prefixes[] | select(.region|test("GLOBAL|us-east-2|ap-northeast-1")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ip_prefix'
      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.ipv6_prefixes[] | select(.region|test("GLOBAL|us-east-2|ap-northeast-1")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ipv6_prefix'

      United States

      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.prefixes[] | select(.region|test("GLOBAL|us-east-2")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ip_prefix'
      curl -s https://ip-ranges.amazonaws.com/ip-ranges.json | jq '.ipv6_prefixes[] | select(.region|test("GLOBAL|us-east-2")) | select(.service|test("API_GATEWAY|CLOUDFRONT|S3")) | .ipv6_prefix'

      3. Allow TCP access from the device running the SwipedOn app to the resolved IP addresses on port 443.

      Windows

      1. Install AWS Tools for Windows PowerShell

      2. Fetch the global IP address ranges required for your data hosting region:

      Australia

      Get-AWSPublicIpAddressRange -Region GLOBAL,us-east-2,ap-southeast-2 -ServiceKey API_GATEWAY,CLOUDFRONT,EC2 | select IpPrefix

      Canada

      Get-AWSPublicIpAddressRange -Region GLOBAL,us-east-2,ca-central-1 -ServiceKey API_GATEWAY,CLOUDFRONT,EC2 | select IpPrefix

      Germany

      Get-AWSPublicIpAddressRange -Region GLOBAL,us-east-2,eu-central-1 -ServiceKey API_GATEWAY,CLOUDFRONT,EC2 | select IpPrefix

      London

      Get-AWSPublicIpAddressRange -Region GLOBAL,us-east-2,eu-west-2 -ServiceKey API_GATEWAY,CLOUDFRONT,EC2 | select IpPrefix

      Singapore

      Get-AWSPublicIpAddressRange -Region GLOBAL,us-east-2,ap-northeast-1 -ServiceKey API_GATEWAY,CLOUDFRONT,EC2 | select IpPrefix

      United States

      Get-AWSPublicIpAddressRange -Region GLOBAL,us-east-2 -ServiceKey API_GATEWAY,CLOUDFRONT,EC2 | select IpPrefix

      3. Allow TCP access from the device running the SwipedOn app to the resolved IP addresses on port 443.