Change in pod IP addresses for IICS NA West1

Version 2

    As part of our continuous infrastructure improvement, Informatica Intelligent Cloud Services is reducing the number of IP addresses needed to be allowed in your company’s firewall. Please find the current list at the bottom for reference that will be replaced with the 4 IP addresses. (2 Primary and 2 DR)

     

    With the new update, any new node additions in the future will not need additional IP addresses to be allowed on your firewall. This change will be effective as of 9th Nov Early 2022 for your pod.

     

    Please leave old IP address as-is until further notice.

     

    The Identity Service and Package Dependency Manager IP addresses are not impacted by this change and should remain allowed.

     

    Please allow these IP addresses on your organization firewall avoid any service disruption.

     

    New Primary IP Addresses to be added:

    75.2.30.109

    99.83.225.209

     

    New DR IP addresses to be added:

    15.197.141.127

    3.33.143.217

     

    URL to test if the site is accessible:

    https://na1-testing.dm-us.informaticacloud.com

     

     

    Frequently Asked Questions:

     

    Q: Is my organization impacted?

    A: If your organization needed to allow specific IP addresses for outbound communication in the past to access IICS, then you will need to allow these new IP addresses as well. These 2 new IP addresses replace the existing IP address list.

    If you never had to allow IP addresses for outbound communication on port 443 or if you allow traffic based on domain names (*.informaticacloud.com and *.informatica.com) then NO further action is needed.

     

    Q: Which IICS POD is impacted by this?

    A:This is applicable for US West 1 pod.

     

    Q: Is there a deadline for making this change?

    A: YES, November 8th.

    The deadline is now moved to a future date, we will communicate soon on the date.

     

    Q: Why are these IPs needed?      

    A:  These IPs are static and will ensure you do not have to add additional IPs in case IICS needs to scale up with additional nodes.

     

    Q: What will be the impact of not allowing these additional IP addresses?

    A: There will be service disruption. Secure agent services and UI accessibility via browser will be impacted.

     

    Q: Do we need to remove IP addresses allowed earlier?

    A: You can remove them from firewall allow list after November 30th 2021.

    Please leave old IP address as-is until further notice.

     

    Q: How to test connectivity to the new site ?

    A: To test connectivity one can run "curl" or "telnet" from the Secure Agent machine. ("curl" can be also downloaded from: curl - Download )

    Example outputs are below:

     

    Please run:

    curl -v https://na1-testing.dm-us.informaticacloud.com

    or

    telnet na1-testing.dm-us.informaticacloud.com 443

     

    If connected, the above commands would show the same:

     

    Curl example output: (Please IGNORE ssl related messages, please ignore "503 Service Unavailable" message)

    curl -v https://na1-testing.dm-us.informaticacloud.com

    *   Trying 75.2.30.109...

    * TCP_NODELAY set

    * Connected to na1-testing.dm-us.informaticacloud.com (75.2.30.109) port 443 (#0)

     

    Telnet Example output:

    telnet na1-testing.dm-us.informaticacloud.com 443

    Trying 75.2.30.109...

    Connected to ac4853c80d00e4365.awsglobalaccelerator.com.

     

     

    Q: Who do we need to work with to allow these IPs?

    A: These IPs are to be allowed on your organization firewall/proxy. Hence, please contact your organization's IT/Network administrators who manage the firewall/proxy configurations.

     

     

    Please leave these old IP address as-is until further notice.

     

    https://knowledge.informatica.com/s/article/524982

     

    IP Addresses for IICS NA1 pod/US West 1 (in addition to the Identity Service and Package Dependency Manager IP Addresses above)
      
    Primary
    IP Addresses
    Disaster Recovery
    IP Addresses
    52.40.87.208107.23.133.198
    52.40.50.11452.20.85.152
    54.201.47.127107.23.41.125
    54.201.249.10352.54.170.90
    54.186.168.13834.193.226.99
    54.187.191.23734.199.46.29


    Primary IP addresses for NA1 
    54.187.189.87 34.223.215.129
    54.213.7.139 52.41.176.6
    52.39.194.229 54.191.19.164
    52.24.12.97 54.68.223.12
    52.26.92.163 54.148.83.219
    54.213.223.237 54.244.33.32
    54.186.249.156 52.25.231.200
    52.42.22.170
       
    35.166.93.13635.165.243.131
    54.218.45.834.211.165.63
    54.149.245.19054.200.3.230
    54.186.227.21654.213.193.68
    35.161.245.83

     

    Additional Primary IP addresses for NA1 

    54.200.93.3344.237.33.3744.239.204.108
    44.240.209.4734.217.4.13750.112.172.150
    52.88.235.21152.40.41.11044.238.52.39
    52.41.139.15444.239.238.3235.166.153.179
    52.40.15.7135.164.26.15534.223.11.98
    44.239.150.2552.33.181.9252.89.42.180
    54.218.11.11744.240.170.19535.166.179.45
    35.160.45.3144.237.149.23544.236.214.182
    44.238.244.115