Change in pod IP addresses for IICS NA East 2

Version 2

    As part of our continuous infrastructure improvement, Informatica Intelligent Cloud Services is reducing the number of IP addresses needed to be allowed in your company’s firewall. Please find the current list at the bottom for reference that will be replaced with the 4 IP addresses. (2 Primary and 2 DR)

     

    With the new update, any new node additions in the future will not need additional IP addresses to be allowed on your firewall. This change will be effective as of 9th Nov Early 2022 for your pod.

     

    Please leave old IP address as-is until further notice.

     

    The Identity Service and Package Dependency Manager IP addresses are not impacted by this change and should remain allowed.

     

    Please allow these IP addresses on your organization firewall avoid any service disruption.

     

    New Primary IP Addresses to be added:

    15.197.154.91

    3.33.142.217

     

    New DR IP addresses to be added:

    52.223.60.75

    35.71.183.222

     

    URL to test if the site is accessible:

    https://na2-testing.dm-us.informaticacloud.com

     

    Frequently Asked Questions:

     

    Q: Is my organization impacted?

    A: If your organization needed to allow specific IP addresses for outbound communication in the past to access IICS, then you will need to allow these new IP addresses as well. These 2 new IP addresses replace the existing IP address list.

    If you never had to allow IP addresses for outbound communication on port 443 or if you allow traffic based on domain names (*.informaticacloud.com and *.informatica.com) then NO further action is needed.

     

    Q: Which IICS POD is impacted by this?

    A:This is applicable for NA East2 pod (URL: https://na2.dm-us.informaticacloud.com/)

     

    Q: Is there a deadline for making this change?

    A: YES, November 8th.

    The deadline is now moved to a future date, we will communicate soon on the date.

     

    Q: Why are these IPs needed?      

    A:  These IPs are static and will ensure you do not have to add additional IPs in case IICS needs to scale up with additional nodes.

     

    Q: What will be the impact of not allowing these additional IP addresses?

    A: There will be service disruption. Secure agent services and UI accessibility via browser will be impacted.

     

    Q: Do we need to remove IP addresses allowed earlier?

    A: You can remove them from firewall allow list after November 30th 2021.

    Please leave old IP address as-is until further notice.

     

    Q: How to test connectivity to the new site ?

    A: To test connectivity one can run "curl" or "telnet" from the Secure Agent machine. ("curl" can be also downloaded from: curl - Download )

    Example outputs are below:

     

    Please run:

    curl -v https://na2-testing.dm-us.informaticacloud.com

    or

    telnet na2-testing.dm-us.informaticacloud.com 443

     

    If connected, the above commands would show the same:

     

    Curl example output: (Please IGNORE ssl related messages, please ignore "503 Service Unavailable" message)

    curl -v https://na2-testing.dm-us.informaticacloud.com

    *   Trying 3.33.142.217...

    * TCP_NODELAY set

    * Connected to na2-testing.dm-us.informaticacloud.com (3.33.142.217) port 443 (#0)

     

    Telnet Example output:

    telnet na2-testing.dm-us.informaticacloud.com 443

    Trying 3.33.142.217...

    Connected to a16d991e5eea2a623.awsglobalaccelerator.com

     

     

    Q: Who do we need to work with to allow these IPs?

    A: These IPs are to be allowed on your organization firewall/proxy. Hence, please contact your organization's IT/Network administrators who manage the firewall/proxy configurations.

     

    Please leave these old IP address as-is until further notice.

     

    https://knowledge.informatica.com/s/article/524982

     

    IP Addresses for IICS NA2 pod/US East 2 (in addition to the Identity Service and Package Dependency Manager IP Addresses above)

     

    Primary
    IP Addresses
    Disaster Recovery
    IP Addresses
    52.0.69.10152.24.141.40
    52.21.32.21535.162.185.167
    52.7.23.5552.25.124.98
    34.192.140.244 54.68.205.159
    34.192.146.8452.32.252.206
    34.192.136.177 34.214.47.233

     

    Additional Primary IP addresses for NA2

    3.209.24.18100.25.85.12454.146.56.157
    52.73.110.20167.202.52.18052.207.120.111
    34.202.81.22454.83.14.1413.225.199.145
    34.194.105.854.163.82.12352.55.121.70
    52.202.155.11052.23.117.23334.193.15.179
    52.4.114.10154.89.12.4954.162.28.138
    3.92.7.2054.86.91.8018.207.71.214
    18.204.72.854.88.64.254.80.125.97
    174.129.197.155