Production (updated 16/10/2024)
The production cluster uses the following addresses:
URL: wss://prod.flexecharge.com
IP: 51.107.187.140
Port: 80 443
Protocol: http https ws wss
Transport Protocol: TCP
Gateway
The gateway must be able to contact a variety of sources for service such as Tailscale, NTP, Docker, Gitlab, etc. Allow connections via the listed protocols/ports
Tailscale (based on Firewall Ports and Hostnames)
Ideally:
- TCP - Initiate connections to *:443
- UDP - Initiate connections from :41641 to :
- UDP - Initiate connections to *:3478
If these are too open, you can specifically allow connections to the following addresses
- login.tailscale.com
- controlplane.tailscale.com
- log.tailscale.com
- log.tailscale.io
For the DERP servers:
- derp1-all.tailscale.com
- derp2-all.tailscale.com
- ...
- derp25-all.tailscale.com
NTP
- UDP - Initiate connections to *:123
DNS
- 1.1.1.1
- 8.8.8.8
Flexecharge (http,https,ws,wss)
- TCP - Initiate connections to portainer.flexecharge.com:80,443
- TCP - Initiate connections to edge.flexecharge.com:80,443
- TCP - Initiate connections to registry.gitlab.com:80,443
- TCP - Initiate connections to hub.docker.com:80,443
- TCP - Initiate connections to registry-1.docker.io:80,443
- TCP - Initiate connections to production.cloudflare.docker.com:80,443
- TCP - Initiate connections to a1byb37bg49qaf-ats.iot.eu-central-1.amazonaws.com:8883
Destination IP/DNS | Communicationprotocol Port (Applicatiionprotocol) |
login.tailscale.com | TCP 443 (HTTPS) |
controlplane.tailscale.com | TCP 443 (HTTPS) |
log.tailscale.com | TCP 443 (HTTPS) |
log.tailscale.io | TCP 443 (HTTPS) |
derp1-all.tailscale.com | UDP 41641 (Wireguard) UDP 3478 (STUN) |
derp2-all.tailscale.com | UDP 41641 (Wireguard) UDP 3478 (STUN) |
... | UDP 41641 (Wireguard) UDP 3478 (STUN) |
derp25-all.tailscale.com | UDP 41641 (Wireguard) UDP 3478 (STUN) |
1.1.1.1 | UDP 53 (DNS) |
8.8.8.8 | UDP 53 (DNS) |
portioner.flexecharge.com | TCP 443 (HTTPS) TCP 80 (HTTP) |
edge.flexecharge.com | TCP 443 (HTTPS) TCP 80 (HTTP) |
registry.gitlab.com | TCP 443 (HTTPS) TCP 80 (HTTP) |
hub.docker.com | TCP 443 (HTTPS) TCP 80 (HTTP) |
registry-1.docker.io | TCP 443 (HTTPS) TCP 80 (HTTP) |
production.cloudflare.docker.com | TCP 443 (HTTPS) TCP 80 (HTTP) |
a1byb37bg49qaf-ats.iot.eu.central-1.amazonaws.com | TCP 8885 (WS+WSS) |
0.openwrt.pool.ntp.org | UDP 123 (NTP) |
1.openwrt.pool.ntp.org | UDP 123 (NTP) |
2.openwrt.pool.ntp.org | UDP 123 (NTP) |
3.openwrt.pool.ntp.org | UDP 123 (NTP) |
Comments
0 comments
Please sign in to leave a comment.