Originating IP ranges for webhooks
988 views
Skip to first unread message
Mark Cheverton
Sep 30, 2011, 11:23:42 AM9/30/11
to MailChimp API Discuss
Hi,
I urgently (today) need a definative list of originating IPs for
webhook callbacks for our firewall configuration. This is holding us
back from go-live.
We had thought that the list at http://mailchimp.com/about/ips/ would
also apply to the webhooks, but a quick check this morning showed the
following:
Test webhook when its created:
173.231.135.70
Subscribe:
173.231.141.132
Unsubscribe/profile update:
72.26.208.57
Of course these might change over time or as load balancers move so I
would like to know whether I can get a definative list of IPs. Thanks
very much for your help - the support line was unable to give me an
answer and launch-time is getting close!
-Mark
I urgently (today) need a definative list of originating IPs for
webhook callbacks for our firewall configuration. This is holding us
back from go-live.
We had thought that the list at http://mailchimp.com/about/ips/ would
also apply to the webhooks, but a quick check this morning showed the
following:
Test webhook when its created:
173.231.135.70
Subscribe:
173.231.141.132
Unsubscribe/profile update:
72.26.208.57
Of course these might change over time or as load balancers move so I
would like to know whether I can get a definative list of IPs. Thanks
very much for your help - the support line was unable to give me an
answer and launch-time is getting close!
-Mark
jesse
Sep 30, 2011, 1:25:48 PM9/30/11
to MailChimp API Discuss
As mentioned on the page linked, it was only ever intended to list
delivery related IP addresses - it's also woefully out of date and
really shouldn't even be published at this point.
Regarding the API and/or Webhooks IPs - our backend server IP
addresses will change without notice. You are welcome to jury rig
something to do reverse lookups, etc. but we do not recommend doing
any egress/ingress whitelisting. The Webhooks page does include a
section entitled "Securing Webhooks", which is a start:
http://apidocs.mailchimp.com/webhooks/
Aside from what's listed there (which is plenty sufficient) you could
also consider using non-standard ports.
jesse
On Sep 30, 11:23 am, Mark Cheverton <M.A.Cheverton...@cantab.net>
wrote:
delivery related IP addresses - it's also woefully out of date and
really shouldn't even be published at this point.
Regarding the API and/or Webhooks IPs - our backend server IP
addresses will change without notice. You are welcome to jury rig
something to do reverse lookups, etc. but we do not recommend doing
any egress/ingress whitelisting. The Webhooks page does include a
section entitled "Securing Webhooks", which is a start:
http://apidocs.mailchimp.com/webhooks/
Aside from what's listed there (which is plenty sufficient) you could
also consider using non-standard ports.
jesse
On Sep 30, 11:23 am, Mark Cheverton <M.A.Cheverton...@cantab.net>
wrote:
Mark Cheverton
Sep 30, 2011, 2:53:14 PM9/30/11
to MailChimp API Discuss
Thanks for the quick response Jesse. Looks like the non-standard port
will have to be the way to go
-Mark
will have to be the way to go
-Mark
Reply all
Reply to author
Forward
0 new messages