Jitterbit allowlist (whitelist) information¶
Introduction¶
Depending on the Jitterbit products used by your organization and your organization's specific scenario, certain Jitterbit IP addresses and URLs must be allowed access to communicate with your organization's network (formerly known as whitelisting).
In many situations, no network or firewall configurations are necessary to communicate with these IP addresses and URLs. However, if your network is behind a firewall that blocks access to all traffic except for specified domains, URLs, or IP addresses, you must configure the network to be able to communicate with Harmony.
The allowlist information provided here is applicable in these scenarios:
- Inbound communication: To allow cloud agents or eiCloud to access internal resources that are behind a firewall within your network.
- Outbound communication: To restrict a private agent, private API gateway, or Design Studio installation that is behind a firewall within your network to communicate only with Jitterbit services that are absolutely necessary.
You may also need to allowlist additional IP addresses or URLs within your network if hosting private infrastructure or on-premises endpoints that a private agent, private API gateway, or Design Studio installation that is behind a firewall within your network must communicate with.
Review the information provided below to determine which Jitterbit IP addresses and URLs need to be allowlisted for the specific scenario within your organization. If any IP addresses or URLs provided below are changed in the future, Jitterbit will provide a notice to customers about the change.
Note
Jitterbit formerly referred to the process of allowlisting IPs and URLs as IP whitelisting using Jitterbit whitelist information.
Determine your region¶
The specific IP addresses or URLs that require allowlisting are determined by the Harmony region that hosts your organization. The region is tied to a Harmony organization rather than a specific user. A user can be part of multiple organizations, as long as the organizations are all in the same region.
When you go to the Harmony portal login URL https://login.jitterbit.com, you are automatically redirected to the Harmony region corresponding with your IP-based geolocation:
- NA: Geolocations in North America and South America are redirected to https://apps.na-east.jitterbit.com/identity/login.
- EMEA: Geolocations in Europe, the Middle East, and Africa are redirected to https://apps.emea-west.jitterbit.com/identity/login.
- APAC: Geolocations in Asia-Pacific, including Australia, are redirected to https://apps.apac-southeast.jitterbit.com/identity/login.
Note
If your organization is hosted in a region different from that associated with your geolocation, you must use the direct URL listed above.
When accessing an organization through the Harmony portal, the region can be inferred from the URL. That is, a URL containing apps.na
is hosted in the NA region, apps.emea
in the EMEA region, and apps.apac
in the APAC region.
Inbound communication¶
You must allow these IP addresses for communication inbound to your network behind a firewall from cloud agents or eiCloud.
Allow cloud agents to access internal resources¶
If you use cloud agents and need to be able to access endpoints within your network (such as an on-premises database or a SQL database at Azure), you must allowlist these IP addresses for your region within your firewall:
NA Region | EMEA Region | APAC Region |
---|---|---|
35.166.153.63 | 18.185.13.223 | 3.0.141.187 |
52.36.120.247 | 35.157.28.131 | 13.54.178.57 |
52.45.79.49 | 52.17.134.164 | 13.55.214.95 |
54.69.5.5 | 54.93.40.43 | 13.237.242.120 |
54.208.19.13 | 54.229.49.142 | 13.251.231.2 |
54.208.19.24 | 54.229.49.156 | 52.220.155.2 |
Allow eiCloud to access internal resources¶
If you use Jitterbit eBridge Connections eiCloud and need to be able to access internal resources that are behind a firewall within your network, you must allowlist these IP addresses for your region within your firewall:
NA Region | EMEA Region | APAC Region |
---|---|---|
13.82.5.152 | 13.69.132.177 | 20.28.188.183 |
13.82.224.23 | 20.50.64.12 | 20.70.144.112 |
20.119.16.23 | 20.54.48.95 | 20.92.123.11 |
20.124.78.200 | 20.54.48.105 | 20.92.210.110 |
20.124.79.125 | 20.54.48.113 | 20.92.210.238 |
20.124.79.150 | 20.54.48.122 | 20.92.212.99 |
20.124.79.187 | 20.54.48.130 | 20.92.212.105 |
20.127.32.147 | 20.54.48.159 | 20.92.214.145 |
20.127.131.20 | 20.54.48.196 | 20.92.215.151 |
20.241.176.70 | 20.54.48.210 | 20.211.19.241 |
20.241.176.72 | 20.54.48.219 | 20.211.64.10 |
20.241.177.7 | 20.54.48.241 | 20.213.0.69 |
20.241.178.23 | 20.54.49.10 | 20.213.0.122 |
20.241.178.41 | 20.67.184.104 | 20.213.0.136 |
20.241.178.55 | 20.67.185.55 | 20.213.0.149 |
20.241.178.57 | 20.67.185.96 | 20.213.0.184 |
20.241.178.100 | 20.67.185.153 | 20.213.1.10 |
20.241.178.115 | 20.67.185.206 | 20.213.1.31 |
20.241.178.121 | 20.67.185.221 | 20.213.1.58 |
20.241.178.125 | 20.67.185.228 | 20.213.2.48 |
20.241.178.138 | 20.67.185.250 | 20.213.2.74 |
20.241.178.152 | 20.67.186.42 | 20.213.2.121 |
20.241.178.167 | 20.67.186.48 | 20.213.4.82 |
20.241.178.218 | 20.67.186.50 | 20.213.4.141 |
20.241.179.159 | 20.67.186.64 | 20.213.4.161 |
20.241.179.183 | 20.223.170.216 | 20.213.4.224 |
20.241.179.198 | 51.104.183.88 | 20.213.4.228 |
20.241.179.250 | 51.104.183.94 | 20.213.5.1 |
20.241.180.9 | 51.104.183.101 | 20.213.5.5 |
20.241.180.81 | 51.104.183.103 | 20.213.5.7 |
20.241.180.89 | 51.104.183.106 | 20.213.5.9 |
20.241.180.93 | 51.104.183.115 | 20.213.5.12 |
20.241.180.111 | 51.104.183.229 | 20.213.5.31 |
20.241.180.136 | 74.234.104.88 | 20.213.5.150 |
20.241.180.231 | 74.234.110.122 | 20.213.5.152 |
40.71.22.62 | 168.63.70.160 | 20.213.134.96 |
40.84.49.11 | ||
52.191.197.101 | ||
52.224.127.37 | ||
52.226.68.60 |
Outbound communication¶
You must allow these URLs to restrict the outgoing communication from a private agent, private API gateway, or Design Studio installation that is behind a firewall within your network to communicate only with Jitterbit services that are absolutely necessary. These URLs/IPs for your region must be allowlisted if you restrict outbound traffic on port 443 on your firewall.
NA region¶
NA Region | Static IP Addresses |
---|---|
https://apps.na-east.jitterbit.com | 13.248.156.39 76.223.1.89 |
https://na-east.jitterbit.com https://login.jitterbit.com | 13.248.138.21 76.223.11.73 |
https://as-p-e.jitterbit.com | 75.2.90.2 99.83.173.76 |
https://citizen.jitterbit.net | 13.248.138.20 76.223.12.78 |
https://services.jitterbit.net | 13.248.156.59 76.223.17.99 |
https://jitterbitsysservice.jitterbit.net | 13.248.156.59 76.223.17.99 |
*.jitterbit.net (or your specific Jitterbit API service URL) | 13.248.156.59 76.223.17.99 |
https://mq.apps.na-east.jitterbit.com (Required for using Jitterbit's Message queue service) | 3.211.129.111 50.19.95.9 |
EMEA region¶
EMEA Region | Static IP Addresses |
---|---|
https://apps.emea-west.jitterbit.com | 13.248.156.26 76.223.21.99 |
https://emea-west.jitterbit.com https://login.jitterbit.com | 13.248.147.55 76.223.24.75 |
https://as-p-emea.jitterbit.com | 75.2.73.52 99.83.137.93 |
https://citizen.jitterbit.eu | 13.248.155.43 76.223.31.67 |
https://services.jitterbit.eu | 13.248.131.7 76.223.7.87 |
https://jitterbitsysservice.jitterbit.eu | 13.248.131.7 76.223.7.87 |
*.jitterbit.eu (or your specific Jitterbit API service URL) | 13.248.131.7 76.223.7.87 |
https://mq.apps.emea-west.jitterbit.com (Required for using Jitterbit's Message queue service) | 52.211.96.48 63.35.82.104 |
APAC region¶
APAC Region | Static IP Addresses |
---|---|
https://apps.apac-southeast.jitterbit.com | 13.248.152.4 76.223.21.122 |
https://apac-southeast.jitterbit.com https://login.jitterbit.com | 13.248.158.29 76.223.24.122 |
https://as-p-apac.jitterbit.com | 75.2.111.54 99.83.176.87 |
https://citizen.jitterbit.cc | 13.248.149.33 76.223.29.111 |
https://services.jitterbit.cc | 13.248.139.18 76.223.11.118 |
https://jitterbitsysservice.jitterbit.cc | 13.248.139.18 76.223.11.118 |
*.jitterbit.cc (or your specific Jitterbit API service URL) | 13.248.139.18 76.223.11.118 |
https://mq.apps.apac-southeast.jitterbit.com (Required for using Jitterbit's Message queue service) | 3.24.36.31 54.66.22.49 |