Reply To: Can’t connect to ec2 instances

#13599
Jeff MorrisonJeff Morrison
Moderator

Hey @ninaaaa, thanks for reaching out to us!

You don’t need to consider EC2 instances to establish communication between your Apple devices and Hexnode. All you’ve to do is whitelist a bunch of URLs on your firewall and ensure to keep the connection to APNs open. To set the record straight once and for all, make sure that the below ports are open for devices to connect to the entire 17.0.0.0/8 address block, which is assigned to Apple:

  • TCP outbound connection to APNs on port 5223 for devices to receive APNs notifications.
  • TCP port 443 or 2197 to wake up the devices by sending notifications to the APNs server.

In case you cannot allow connection to the entire 17.0.0.0/8 address block, use the same ports to allow access to the below network ranges:

IPv6

  • 2620:149:a44::/48
  • 2403:300:a42::/48
  • 2403:300:a51::/48
  • 2a01:b740:a42::/48

IPv4

  • 17.249.0.0/16
  • 17.252.0.0/16
  • 17.57.144.0/22
  • 17.188.128.0/18
  • 17.188.20.0/23

Have a peek at Hexnode UEM architecture documentation to get the entire list of URLs and ports to ensure seamless device connectivity with Hexnode.

Hope this answers your query.

Cheers!
Jeff Morrison
Hexnode UEM