IP Addresses to Allowlist

IP Addresses to Allowlist

If your environment restricts communications by allowing only known IP addresses, you need to allowlist the Coveo IP addresses. This is however optional to use Coveo.

The addresses listed on this page should rarely change. Should a change be required, Coveo would inform its customers in advance.

Inbound Communication

Inbound communication with Coveo takes place when the Coveo cloud-based crawlers access your on-premises content to index it.

The following are typical cases in which you need to allowlist Coveo IP addresses:

• In Salesforce, when you use trusted IP ranges to restrict access to your organization (see Set Trusted IP Ranges for Your Organization).

• In Sitecore, when you use Coveo for Sitecore 4.0 prior to the October 2016 release (4.0.450) with Coveo.

US Organizations

The following IP addresses are used by most Coveo organizations, namely those deployed in the United States:

• 54.84.109.253

• 54.84.122.250

• 54.84.126.201

• 54.84.126.206

• 54.89.203.159

• 34.228.114.92

• 52.1.174.164

• 34.206.208.119

• 54.147.101.56

European Organizations

The following IP addresses are used by organizations deployed in Ireland:

• 34.242.107.147

• 54.170.3.6

• 54.170.30.39

• 54.228.23.165

• 79.125.87.0

• 52.38.148.217

Australian Organizations

The following IP addresses are used by organizations deployed in Australia:

• 13.236.154.182

• 13.211.9.156

• 3.106.44.249

• 54.206.25.172

• 52.65.144.94

• 54.252.102.158

HIPAA Organizations

The following IP addresses are used by Coveo HIPAA organizations only:

• 52.207.117.192

• 34.197.57.255

• 34.198.140.110

• 34.200.73.232

• 52.55.181.180

• 34.199.215.203

• 18.214.193.57

• 54.211.244.247

• 52.4.190.210

When these IP addresses aren’t allowlisted, you will see error codes such as SALESFORCE_UNABLE_TO_AUTHENTICATE_IP_RESTRICTED for Salesforce sources.

Outbound Communication

Sometimes, you may also have to restrict the list of IP addresses with which your server can communicate with Coveo. If you use the Push API or the Coveo On-Premises Crawling Module, or if your server needs to perform queries, navigate to the AWS IP Ranges JSON and allowlist all IP address ranges that are associated with CloudFront edge servers and all ranges from your primary deployment region:

• us-east-1 for organizations whose primary deployment is in the US East region.

• eu-west-1 for organizations whose primary deployment is in the Ireland region.

• ap-southeast-2 for organizations whose primary deployment is in the Australia region.

Was this article useful?

Very useful Not really

Thanks for your feedback!

Is this article useful?

You can close this window or leave a comment below.

Very useful Not really

Can you tell us more about your experience today?

Comments (optional)

Leave your email address if you'd like us to get back to you.

Email (optional)

Please provide a valid email address.

The Coveo Privacy Policy applies.

Need help? Ask the Community.

Submit

Is this article useful?

You can close this window or leave a comment below.

Very useful Not really

Can you tell us more about your experience today?

Comments (optional)

Leave your email address if you'd like us to get back to you.

Email (optional)

Please provide a valid email address.

The Coveo Privacy Policy applies.

Need help? Ask the Community.

Submit