[Jeff Hexnode 2 December 2021 Jeff Moderator]

Hey @ninaaaa, thanks for reaching out to us!

You don’t need to consider EC2 instances to establish communication between your Apple devices and Hexnode. All you’ve to do is whitelist a bunch of URLs on your firewall and ensure to keep the connection to APNs open. To set the record straight once and for all, make sure that the below ports are open for devices to connect to the entire 17.0.0.0/8 address block, which is assigned to Apple:

• TCP outbound connection to APNs on port 5223 for devices to receive APNs notifications.
• TCP port 443 or 2197 to wake up the devices by sending notifications to the APNs server.

In case you cannot allow connection to the entire 17.0.0.0/8 address block, use the same ports to allow access to the below network ranges:

IPv6

• 2620:149:a44::/48
• 2403:300:a42::/48
• 2403:300:a51::/48
• 2a01:b740:a42::/48

IPv4

• 17.249.0.0/16
• 17.252.0.0/16
• 17.57.144.0/22
• 17.188.128.0/18
• 17.188.20.0/23

Have a peek at Hexnode UEM architecture documentation to get the entire list of URLs and ports to ensure seamless device connectivity with Hexnode.

Hope this answers your query.

Cheers!
Jeff Morrison
Hexnode UEM

[ninaaaa Participant 2 December 2021 ninaaaa Participant]

Wow! Thanks for the quick response. Now I know. Hope it’ll work out and run smoothly.

[Jeff Hexnode 2 December 2021 Jeff Moderator]

@ninaaaa Good luck with that! Should you need any further assistance, please do not hesitate to reach us!

Hope to hear from you again soon,
Jeff Morrison
Hexnode UEM