Note: Please go to docs.rightscale.com to access the current RightScale documentation set. Also, feel free to Chat with us!
Home > Guides > Dashboard Users Guide > Settings > Account > Concepts > About Firewalls > Access RightScale UI or API from behind a firewall

Access RightScale UI or API from behind a firewall

Overview

End-users interact with the RightScale platform through our HTTP UI and API. When users access RightScale from an internal network, they may be subject to security constraints by firewalls or HTTP proxies.

Goal

After completing this how-to, you will have configured your network firewall or proxy to allow access to RightScale Web applications.

Procedure

Note RightScale-Operated Networks

RightScale operates network infrastructure in several geographical regions to provide fault tolerance. Your instances generally communicate with infrastructure in a nearby geographical region, but may be redirected to remote regions during network or cloud outages.

Network/CIDR Location Description
54.225.248.128/27 US-East us-3 cluster and island1 resources
54.244.88.96/27 US-West us-4 cluster and island10 resources
54.86.63.128/26 US-East additional island1 resources
54.187.254.128/26 US-West additional island10 resources
54.217.243.218/32
54.217.243.226/32
Europe

island2 resources. Can be removed after April 30, 2015.

Only required for workloads in AWS EU-Frankfurt and AWS EU-Ireland.

54.246.247.16/28  Europe  Only required for workloads in AWS EU-West and EU-Central. 

54.248.220.136/32

54.248.220.137/32

Japan

island8 resources. Can be removed after April 30 2015.  

Only required for workloads in AWS AP-Tokyo and AWS AP-Sydney

54.248.220.128/28 Japan Only required for workloads in AWS AP-Tokyo and AWS AP-Sydney. 

54.251.98.164/32

54.251.106.120/32

Singapore

island5 resources. Can be removed after April 30 2015.  

Only required  for workloads in AWS AP-Singapore.

54.255.255.208/28 Singapore Only required for workloads in AWS AP-Singapore. 

Enable Browser HTTPS Access

You will need to create firewall rules to allow outbound HTTPS to RightScale-operated networks. If using a content-filtering Web proxy, you will need to allow access to URLs/hostnames associated with RightScale management clusters.

Destination Network/CIDR Ports Purpose
54.225.248.128/27 tcp/443 Send UI and API requests to us-3.rightscale.com
54.244.88.96/27 tcp/443 Send UI and API requests to us-4.rightscale.com
54.86.63.128/26 tcp/443 Send UI and API requests to us-3.rightscale.com
54.187.254.128/26 tcp/443 Send UI and API requests to us-4.rightscale.com
54.246.247.16/28 tcp/443 Send UI and API requests to us-4.rightscale.com
54.255.255.208/28 tcp/443 Send UI and API requests to us-4.rightscale.com

 

What's Next

Your firewall has been configured to allow end users to connect to RightScale. You may now explore the RightScale platform.

 

You must to post a comment.
Last modified
15:45, 24 Nov 2014

Tags

This page has no custom tags.

Classifications

This page has no classifications.

Announcements

None


© 2006-2014 RightScale, Inc. All rights reserved.
RightScale is a registered trademark of RightScale, Inc. All other products and services may be trademarks or servicemarks of their respective owners.