Static IP Addresses
Whitelist CTICloud IP addresses for secure integration
Introduction to CTICloud Static IP Addresses
CTICloud supports static IP addresses for outbound HTTP requests. When enabled, all HTTP requests from CTICloud to your server will originate from a fixed set of IP addresses, allowing you to configure strict firewall rules and network security policies.
Why Use Static IP Addresses
Static IP addresses provide an additional layer of security for your infrastructure by allowing you to:
- Control network access - Restrict incoming traffic to only trusted sources
- Simplify firewall rules - Define precise IP-based access controls
- Meet compliance requirements - Satisfy security policies that mandate IP whitelisting
- Audit traffic sources - Verify that requests are genuinely from CTICloud's infrastructure
- Enhance security - Prevent unauthorized access to your webhook endpoints
CTICloud's Static IP Addresses
When static IP addressing is enabled, all webhook requests and API callbacks from CTICloud will originate from the following IP addresses:
Production Environment
- Primary IP Range:
[Your IP Range Here] - Secondary IP Range:
[Your IP Range Here]
Staging/Testing Environment (Optional)
- Test IP Range:
[Your Test IP Range Here]
Note: Please contact CTICloud support to obtain the current list of static IP addresses for your deployment region.
Static IP Implementation
CTICloud uses static IP addresses by default for all outbound HTTP requests. No configuration is required on your end - all webhook requests and API callbacks automatically originate from our fixed IP addresses.
Configuring Your Firewall
To allow CTICloud to reach your webhook endpoints, configure your firewall to accept incoming traffic from our static IP addresses:
Configure your firewall to allow incoming traffic from CTICloud's static IPs:
# Example using iptables (Linux)
iptables -A INPUT -s [CTICloud_IP_RANGE] -p tcp --dport 443 -j ACCEPT
# Example using AWS Security Group
# Add inbound rule: HTTPS (443) from [CTICloud_IP_RANGE]Best Practices
When implementing static IP address whitelisting:
- Test in staging first - Always verify configuration in a non-production environment
- Monitor access logs - Regularly review logs to ensure all traffic originates from expected IPs
- Update firewall rules promptly - If CTICloud notifies you of IP address changes, update your rules immediately
- Use HTTPS - Static IPs complement but don't replace proper TLS/SSL encryption
- Implement authentication - Continue using API keys and request signing alongside IP whitelisting
Regional Availability
Static IP addresses may vary by deployment region:
| Region | Availability | Notes |
|---|---|---|
| China (cn-1) | Available | Standard static IP pool |
| International | Available | Contact support for specific IPs |
Troubleshooting
Common Issues
Problem: Webhook requests are being blocked after enabling static IPs
Solution:
- Verify your firewall rules include all CTICloud IP ranges
- Check that your server accepts traffic on the configured port
- Review security group or ACL settings in your cloud provider
Problem: Inconsistent webhook delivery
Solution:
- Ensure both primary and secondary IP ranges are whitelisted
- Check for load balancer or proxy configurations that may affect source IPs
- Verify your webhook endpoint is responding correctly (HTTP 200)
Security Considerations
⚠️ Important Security Notes:
- Static IP whitelisting is one layer of security - always implement multiple security measures
- Validate webhook signatures to confirm requests authenticity
- Use API keys for authentication
- Keep your webhook endpoints private and not publicly discoverable
- Regularly rotate API credentials
Updates and Notifications
CTICloud will notify you at least 30 days in advance if static IP addresses need to change due to:
- Infrastructure upgrades
- Regional expansion
- Security enhancements
Notifications will be sent to your registered administrative email address.
Need Help?
If you have questions about static IP addressing or need the current IP list:
- Email: [email protected]
- Technical Documentation: CTICloud API Documentation
- Support Portal: Contact your account manager
Reference: This document structure is inspired by industry best practices for static IP documentation. For the most current IP address list, please contact CTICloud support.
Updated 17 days ago