| From Zone |
Source |
To
Zone |
STAGING Destination |
PROD Destination |
Protocol |
Port(s) |
Action |
Function or Requirement |
| LAN2 |
172.29.2.0/24 |
WAN |
c2estgstorage.blob.core.windows.net |
c2eprodstorage.blob.core.windows.net |
TCP |
443 |
PERMIT |
Blob storage - redundant with row above? |
| LAN2 |
172.29.2.0/24 |
WAN |
global.azure-devices-provisioning.net |
global.azure-devices-provisioning.net |
TCP |
443 |
PERMIT |
DPS Access |
| LAN2 |
172.29.2.0/24 |
WAN |
c2e-stg-iothub-default.azure-devices.net |
c2e-prod-iothub-default.azure-devices.net |
TCP |
443 |
PERMIT |
Initial IoT Hub for IEP |
| LAN2 |
172.29.2.0/24 |
WAN |
c2estgcontainerregistry.azurecr.io |
c2eprodcontainerregistry.azurecr.io |
TCP |
443 |
PERMIT |
Container Registries |
| LAN2 |
172.29.2.0/24 |
WAN |
c2e-stg-api-mgt.azure-api.net |
c2e-prod-api-mgt.azure-api.net |
TCP |
443 |
PERMIT |
API Management for Certificates |
| LAN2 |
172.29.2.0/24 |
WAN |
c2e-stg-devices.azure-api.net |
c2e-prod-devices.azure-api.net |
TCP |
443 |
PERMIT |
Intelligent Edge Provisioning Device URL |
| LAN2 |
172.29.2.0/24 |
WAN |
settings-win.data.microsoft.com |
settings-win.data.microsoft.com |
TCP |
443 |
PERMIT |
Microsoft Diagnostic Data [May or May Not be necessary] |
|
|
|
|
|
|
|
|
|
| LAN2 |
172.29.2.0/24 |
WAN |
ceres-stg.azure-devices.net |
dataservices-eastus.azure-devices.net |
TCP |
5671 |
PERMIT |
DxMonitor RDM |
| LAN2 |
172.29.2.0/24 |
WAN |
api.dataservices-stg.doverfs.com |
api.dataservices.doverfs.com |
TCP |
8863 |
PERMIT |
DxMonitor MDS |
| LAN2 |
172.29.2.0/24 |
WAN |
ceresstg.blob.core.windows.net |
dataservicesfiles.blob.core.windows.net |
TCP |
443 |
PERMIT |
Blob Storage for Log Files |
| LAN2 |
172.29.2.0/24 |
WAN |
mscrl.microsoft.com |
mscrl.microsoft.com |
TCP |
80 |
PERMIT |
SSL Certification Revocation |
| LAN2 |
172.29.2.0/24 |
WAN |
crl.godaddy.com |
crl.godaddy.com |
TCP |
80 |
PERMIT |
SSL Certification Revocation |
| LAN2 |
172.29.2.0/24 |
WAN |
crl3.digicert.com |
crl3.digicert.com |
TCP |
80 |
PERMIT |
SSL Certification Revocation |
| LAN2 |
172.29.2.0/24 |
WAN |
Customer Preferred Primary DNS |
Customer Preferred Primary DNS |
UDP |
53 |
PERMIT |
Google - 8.8.8.8 / OpenDNS - 208.67.220.220 |
| LAN2 |
172.29.2.0/24 |
WAN |
Customer Preferred Secondary DNS |
Customer Preferred Secondary DNS |
UDP |
53 |
PERMIT |
Google - 8.8.4.4 / OpenDNS - 208.67.222.222 |
|
|
|
|
|
|
|
|
|
|
|
|
|
blobcommonfleetqa.blob.core.windows.net |
TCP |
443 |
|
|
|
|
|
|
104.40.49.44, 168.61.54.255 |
TCP |
5671 |
|
|
|
|
|
|
104.45.172.1 |
TCP |
8863 |
|
|
|
|
|
|
|
|
|
|
|