Application Server IPs & EC2 configuration
If you need to use external services that are located behind a firewall you'll need to open your firewall to allow access from our application servers. This is necessary as we may move your application to a different server at any time.
The preferred method to allow access depends on where your service is running. When you're running outside of AWS you'll need to add an IP range, which may require maintenance in the future. If you're running inside of AWS you can add our application server security group and avoid maintaining the IP-ranges.
External service: This list will be updated continuously so please check it every once in a while to make sure your firewall is set up correctly. The IPs that needs to be added to your firewall depends on the your app's region:
US region IPs:
50.17.211.192-50.17.211.207. (CIDR50.17.211.192/28)54.235.159.192-54.235.159.223. (CIDR54.235.159.192/27)
EU region IPs:
54.228.207.192 - 54.228.207.207(CIDR54.228.207.192/28)54.228.35.188(CIDR54.228.35.188/32)54.228.41.100(CIDR54.228.41.100/32)54.228.34.2(CIDR54.228.34.2)
Security groups
Important: We will soon stop supporting security group access rules as a means to allow access from AppHarbor servers. Instead we recommend that you add the IP ranges listed above for your region.
Inside AWS using EC2: You can add access rules
for the application server security group to your security groups.
Do so using our AWS account id and security group name:
136621386816/web
Inside AWS using RDS: Add our web server
security group to your DB security group. To do that, select your
DB Security Group under the RDS tab in your AWS console. Then you
can add our security group by selecting "EC2 Security Group" and
fill in our AWS Account ID (136621386816) and security
group name (web). Note that this only works if your
RDS instance is running in the US East region.