The SAC Connector requires external connectivity to several endpoints depending on the location of the Tenant.

For all other connections, port 443 is required.  

You can verify the IP is accessible and the port is open by running a telnet command from the connector's host:

>> telnet IP PORT

The tenants are divided into two geographical areas: USA \ Europe. 

Per region, the list of SAC fixed IP-Addresses could be found here:

If you are not sure where is your tenant located: 

 nslookup  
    
     .luminatesec.com
    

Locate the region in the response: 

nslookup 
    
     .luminatesec.com :
    xdxdxdxd.production.
     us-west-2.luminatesec.com 
    
nslookup 
    
     .luminatesec.com:
    xdxdxdxd-5188d660a31.elb.
     eu-west-1.amazonaws.com
    

 For the Connector's operation, the following URLs needs to be accessible:

  • luminate-ws. .luminatesec.com  - endpoint for core-server connection, metrics collection, connector-orchestrator connection.
  • internal. .luminatesec.com  - endpoint to CMS (registration, policy, last-seen status, traces)
  • sentry.io - Sentry endpoint for health monitoring.