Datto Networking Firewall Requirements

Follow

Topic

This article describes networking requirements for Datto Networking devices, including IP addresses and hosts that the devices require access to.

Environment

  • Datto Access Points
  • Datto Switches
  • Datto Managed Power

Description

Datto Networking Portal

Access points and Managed Power devices must have access to the following host via HTTPS (port 443) for cloud management.

  • cloud_ap.cloudtrax.com

Switches must have access to the following host via HTTPS (port 443) for cloud management.

  • cloud-switch.cloudtrax.com

Access Point Fallback

Access Points must have access to the following host and IP address in the event the primary checkin server is unreachable.

  • checkin-fallback.cloudtrax.com
  • 54.245.251.231

Switch Fallback

Switches must have access to the following host and IP address in the event the primary checkin server is unreachable.

  • 54.245.115.10

Managed Power Fallback

Managed Power devices must have access to the following host and IP address in the event the primary checkin server is unreachable.

  • 34.210.223.70

Router Fallback

Routers must have access to the following host and IP address in the event the primary checkin server is unreachable:

  • 54.68.39.120

Datto Connection Keeper

Access points and switches must have access to the following host and address to achieve a keepalive connection that transmits expedited reconfiguration events.

  • connkeeper.cloudtrax.com
  • 35.163.125.115
Datto recommends that TCP and HTTP timeout settings on the firewall are set to at least 10 minutes for stable Connection Keeper performance.

Network Time Protocol

Access points and switches must have access to the following hosts to synchronize time:

  • pool.ntp.org
  • 0.openwrt.pool.ntp.org
  • ntp.cloudtrax.com

Firmware Updates

All Datto Networking devices must have access to the following file servers via both HTTP (port 80) and HTTPS (port 443) for firmware updates.

  • dev.cloudtrax.com
  • files.cloudtrax.com

Advanced Troubleshooting

All Datto Networking devices must have access to the following host via TCP port 18991 for remote troubleshooting access and support intervention:

  • vpn.cloudtrax.com
Cisco router models RV350/RV345/RV345P/RV340W running firmware release 1.0.01.17 or older are unable to access all Datto Networking servers due to an issue with their content filtering system. Update to firmware release 1.0.01.1702 or newer to resolve this issue.

Was this article helpful?

0 out of 0 found this helpful

You must sign in before voting on this article.

Want to talk about it? Head on over to our Community Forum!