Skip to main content
Welcome to Virtru's support portal. As we work to make this page more accessible to screen readers, please contact us at support@virtru.com for technical support.

CKS Reference - Firewall

Craig Engle
  • Updated

To minimize exposure and maximize security for the Customer Key Server (CKS) appliance Virtru will only send traffic to the CKS from specific IP addresses.

Traffic Requirements

Inbound to the Virtru CKS from Virtru SaaS for normal decrypt operations:

  • TCP
    • 52.14.8.108
    • 18.216.244.36
    • 13.59.117.136
      NEW IPS!
    • 3.18.99.98
    • 3.131.32.254
    • 18.119.73.143
  • Port
    • Defined by client
    • Default 443

Inbound to the Virtru CKS from Virtru IPs for setup, testing, and health monitoring:

  • TCP
    • 3.12.127.107
    • 3.12.127.228
    • 52.15.183.190
  • Port
    • Defined by client
    • Default 443

Remote access to the server for SSH (for configuration and setup)

  • TCP
    • <Your Company IPs>
  • Port
    • Default 22

Note

Virtru does NOT require SSH access to any host, this is only a reference for industry best practices.

Related articles