Follow
Configuring Your Firewall

***

If you have configured your firewall or mail server in such a way as to allow access only to specific vendors, you need to add certain Workfront IP addresses to your firewall whitelist for the following purposes:

  • Allowing messages from the Workfront application.
  • Using Single Sign-On (SSO).
  • POP (used when replying to Workfront email notifications or for entering issues into Workfront through email).
  • Document Webhooks (used when configuring custom document integrations, as described in "Configuring Document Integrations.")

You also need to open certain ports in order for email messages to be delivered encrypted.

Adding IP Addresses To The Whitelist

The IP addresses that you have to whitelist on your firewall vary depending on what cluster your production environment is on. 

To find out what cluster your Production environment is on, contact our Support Team.
For more information about how to contact our Support Team, see "How to Open a Support Ticket."

IP Addresses to Whitelist for Clusters 1, 2, and 3

Add the following IP addresses for receiving email from the Workfront application:

  • 69.42.126.188
  • 66.119.37.185

Add the following IP addresses for SSO and POP:

  • 69.42.126.188
  • 66.119.37.186

IP Addresses to Whitelist for Cluster 4

Add the following IP addresses for POP, SSO, and receiving email from the Workfront application:

  • 52.31.132.175
  • 52.19.188.226
  • 52.28.49.94
  • 52.29.41.175
  • 52.29.197.69
  • 52.48.124.108 

IP Addresses to Whitelist for Cluster 5

Add the following IP addresses for receiving email from the Workfront application:

  • 13.58.86.183
  • 34.209.181.84
  • 35.161.82.137
  • 52.14.70.114
  • 52.15.230.220
  • 54.71.252.65

Depending on which environment you are using, add the following IP addresses for SSO and POP:

IP Addresses for Your Production Environment for SSO and POP

Add the following IP addresses for your Production environment for SSO and POP:

  • 13.58.82.59
  • 34.208.255.239
  • 52.24.154.46
  • 52.14.134.251
  • 52.14.208.59
  • 54.69.62.181

IP Addresses for Your Preview Environment for SSO and POP

Add the following IP addresses for your Preview Sandbox environment for SSO and POP:

  • 13.58.57.211
  • 13.58.126.18
  • 52.14.179.237

IP Addresses for Your First Refresh Sandbox (CR1) for SSO and POP

Add the following IP addresses for your first Custom Refresh Sandbox environment (CR1) for SSO and POP:

  • 13.58.98.241
  • 52.14.175.191
  • 52.15.213.186

IP Addresses for Your Second Custom Refresh Sandbox (CR2) for SSO and POP

Add the following IP addresses for your second Custom Refresh Sandbox environment (CR2) for SSO and POP:

  • 13.58.58.6
  • 52.15.208.139
  • 52.15.62.153

URLs to Add for All Clusters to Access Proof HQ

Add the following URLs for allowing ProofHQ to access Workfront on any cluster:

  • *.proofhq.com
  • webcapture.int.proofhq.com - web capture tool
  • mx.proofhq.com - email servers

For more information, see "Updates Required for Your ProofHQ/Proofing Whitelisting."

Opening Ports for Encrypted Email  

Emails from the Workfront application are sent encrypted, using ports 465 and 587. If your mail server does not support encrypted email, emails are delivered unencrypted, using port 25.

Not Receiving Email Notifications from Support  

If you are not receiving emails from our Support Team, ensure that you add the IP addresses listed in "Configuring your firewall for use with Zendesk."

DON'T DELETE, DRAFT OR HIDE THIS ARTICLE. IT IS LINKED TO THE PRODUCT, THROUGH THE CONTEXT SENSITIVE HELP LINKS. ** There was some talk that this article should be split in separate articles for each cluster, but we cannot do this because it is linked to the UI: Setup> System> Customer Info> IP Whitelist