SaaS Regions and IP Ranges

Sysdig SaaS applications are deployed in five data center regions—US East (Virginia), US West AWS (Oregon), US West GCP (Dallas), AP Australia (Sydney) and the European Union (Frankfurt). At the data centers, Sysdig ensures the best security and compliance standards for your data. This page lists the current Sysdig SaaS domains and IP ranges for each region.

For code-based access: Note: The endpoints for Sysdig Monitor and Sysdig Secure are the same in the US West (AWS and GCP), AP Australia, and EU regions. When configuring code-based access to Sysdig Secure, use the endpoint rather than the website URL.

For Single Sign-On: Sysdig SaaS users require the website address to reach the Sysdig applications. Use the appropriate website URL while configuring a single sign-on.

Collector: Additionally, Sysdig agents in a SaaS-based deployment need to be able to reach the Sysdig collector. Depending on your network configuration, you might need to modify your firewall configuration to permit outbound connections from agents to the collector.

Inbound IP Addresses: The traffic originating from the Sysdig agent to the Sysdig backend is known as inbound traffic. Allow the agent to send communication outbound on TCP 6443 to the inbound IP ranges associated with your SaaS region.

Outbound IP Addresses: Also known as source IP addresses and all the traffic originating from the Sysdig backend hosted in each region flows through one of the corresponding source IP addresses.

Americas

US East (North Virginia)

Sysdig ApplicationDomainIP Range
Sysdig Monitorhttps://app.sysdigcloud.comFor US East, IPs are assigned dynamically as the system scales. Therefore, we cannot provide the source IP range of the originating traffic.
Sysdig Securehttps://secure.sysdig.com
Sysdig Collectorcollector.sysdigcloud.com
Node Image Analyzerhttps://collector-static.sysdigcloud.com/internal/scanning/scanning-analysis-collector
Secure Feed (whitelist for the VM scanning engine)https://secure-feeds-prod.s3.us-east-1.amazonaws.com

US West (Oregon)

Sysdig Application

Domain

IP Range

Sysdig Monitor

https://us2.app.sysdig.com

All the traffic originating from the US West datacenter will have one of the following source IP addresses:

  • 54.218.164.215

  • 54.244.190.180

  • 44.232.85.27

The inbound IP addresses are:

  • 54.190.202.108

  • 54.203.169.53

  • 54.70.9.188

Sysdig Secure

Endpoint: https://us2.app.sysdig.com

Website URL: https://us2.app.sysdig.com/secure/

All the traffic originating from the US West datacenter will have one of the following source IP addresses:

  • 54.218.164.215

  • 54.244.190.180

  • 44.232.85.27

The inbound IP addresses are:

  • 54.190.202.108

  • 54.203.169.53

  • 54.70.9.188

Sysdig Collector

Node Image Analyzer

https://us2.app.sysdig.com/internal/scanning/scanning-analysis-collector

Secure Feed whitelist for the VM scanning engine

https://secure-feeds-production-us-west-2-263844535661.s3.us-west-2.amazonaws.com

European Union

Sysdig Application

Domain

IP Range

Sysdig Monitor

https://eu1.app.sysdig.com

All traffic originating from the European Union (EU) datacenter will have one of the following source IP addresses:

  • 3.127.3.205

  • 3.127.111.42

  • 18.157.104.82

The inbound IP addresses are:

  • 18.156.190.126

  • 18.157.62.50

  • 3.126.167.54

Sysdig Secure

Endpoint: https://eu1.app.sysdig.com

Website URL: https://eu1.app.sysdig.com/secure/

All traffic originating from the European Union (EU) datacenter will have one of the following source IP addresses:

  • 3.127.3.205

  • 3.127.111.42

  • 18.157.104.82

The inbound IP addresses are:

  • 18.156.190.126

  • 18.157.62.50

  • 3.126.167.54

Sysdig Collector

Node Image Analyzer

https://eu1.app.sysdig.com/internal/scanning/scanning-analysis-collector

Secure Feed (whitelist for the VM scanning engine)

https://secure-feeds-production-eu-central-1-263844535661.s3.eu-central-1.amazonaws.com

Asia Pacific (Sydney)

Sysdig ApplicationDomainIP Range
Sysdig Monitorhttps://app.au1.sysdig.comOutbound IPs:

13.236.248.84
13.236.151.38
13.54.145.96

The inbound IPs:

13.238.59.195
52.62.57.59
52.64.82.29
Sysdig SecureEndpoint: https://app.au1.sysdig.com/
Website URL: https://app.au1.sysdig.com/secure/
Outbound IPs:

13.236.248.84
13.236.151.38
13.54.145.96

The inbound IPs:

13.238.59.195
52.62.57.59
52.64.82.29
Sysdig Collectoringest.au1.sysdig.com
Node Image Analyzerhttps://app.au1.sysdig.com/internal/scanning/scanning-analysis-collector
Secure Feed (whitelist for the VM scanning engine)https://secure-feeds-production-ap-southeast-2-263844535661.s3.ap-southeast-2.amazonaws.com

US West (GCP)

Sysdig ApplicationDomainIP Range
Sysdig Monitorhttps://app.us4.sysdig.comOutbound IP:

34.145.19.124

Inbound IP:

34.145.19.124
Sysdig SecureEndpoint: https://app.us4.sysdig.com/
Website URL: https://app.us4.sysdig.com/secure/
Sysdig Collectoringest.us4.sysdig.comInbound IP:

34.145.123.253
Node Image Analyzerhttps://app.us4.sysdig.com/internal/scanning/scanning-analysis-collector
Secure Feed (whitelist for the VM scanning engine)https://storage.googleapis.com/us4-prod-usw1-e33c-us-west1-us-secure-feeds

Sysdig Collector Ports

Sysdig Agent uses the following ports to communicate with the Sysdig Collector.

Regions

Port

US East

  • Collector: SSL/TLS 6443

  • Collector: TCP 6666

  • UI/API: HTTPS 443

US West

  • Collector: SSL/TLS 6443

  • Collector Alt: SSL/TLS 443

  • UI/API: HTTPS 443

EU

  • Collector: SSL/TLS 6443

  • Collector Alt: SSL/TLS 443

  • UI/API: HTTPS 443

Asia Pacific (Sydney)

  • Collector: SSL/TLS 6443

  • UI/API: HTTPS 443

US West (GCP)

  • Collector: SSL/TLS 6443

  • UI/API: HTTPS 443

AWS Account IDs

RegionsAWS Account IDs
US East273107874544
US West263844535661
EU263844535661

Redirect URLs for Authentication

Authentication Protocol

US East

Other Regions

SAML

Sysdig Monitor

ACS URL / Sign on URL: https://app.sysdigcloud.com/api/saml/auth

Entity ID: https://app.sysdigcloud.com

Sysdig Secure

ACS URL / Sign on URL: https://secure.sysdig.com/api/saml/secureAuth

Entity ID: https://secure.sysdig.com/

Sysdig Monitor

Sysdig Secure:

OpenID

Sysdig Monitor

Redirect URL:

https://app.sysdigcloud.com/api/oauth/openid/auth

Sysdig Secure

Redirect URL:

https://secure.sysdig.com/api/oauth/openid/secureAuth

Sysdig Monitor

Redirect URL:

Sysdig Secure

Redirect URL:

Google OAuth

Sysdig Monitor

https://app.sysdigcloud.com/api/oauth/google/auth

Sysdig Secure

https://secure.sysdig.com/api/oauth/google/secureAuth

Sysdig Monitor

Sysdig Secure

Prometheus Endpoints

Use the following Prometheus endpoints for Grafana integrations.

RegionEndpoint
US Easthttps://app.sysdigcloud.com/prometheus
US Westhttps://us2.app.sysdig.com/prometheus
US West (GCP)https://app.us4.sysdig.com/prometheus
EU Centralhttps://eu1.app.sysdig.com/prometheus
Asia Pacific (Sydney)https://app.au1.sysdig.com/prometheus


Last modified June 23, 2022