Skip to content
  • There are no suggestions because the search field is empty.

How do I configure my firewall or WAF for external assessments?

If you receive an error when using our external scanner (also called cloud scanners; not using a locally installed Scanner Appliance for assessment), you might need to configure your firewall or WAF (Web Application Firewall). Please check the following to ensure your assets (IP addresses, web applications, and APIs) can be scanned. 

The following IP addresses must be allowed (white-listed) for inbound traffic from our data center to your assets.

  • IPv4: 185.163.84.0/24
  • IPv4: 185.163.85.0/24
  • IPv6: 2a0b:6800::/29

Scanning a network:

Make sure that either ICMP is allowed or that any of the following ports are available publicly for inbound communication: 21, 22, 23, 25, 53, 80, 110, 111, 135, 139, 143, 443, 445, 993, 995, 1723, 3306, 3389, 5900, and 8080. 

Scanning a web application:

Please allow ports 80 and 443 for incoming traffic to your web application from our data center.