Docs » Administration » Whitelisting SignalFx Services

Whitelisting SignalFx Services

SignalFx is composed of a number of different services. For organizations with more stringent networking security policies around sending data to third parties, you can use one of the following mechanisms to ensure access to the SignalFx services:

If your policies require that you identify static IP addresses, then choose one of the first two options.

Use a simple http/https proxy

If you can get out to the WWW via proxy, then this is your simplest option. collectd supports communicating over an https proxy, as does the SignalFx metric proxy.

Use the SignalFx metric proxy

You can run the SignalFx metric proxy itself in a DMZ.

Allow URLs through proxy

If your organization’s networking security policies require services delivered over the Internet to be individually whitelisted, please ensure that the following URLs are allowed through your proxy:

  • signalfx.com
  • signalfx.zendesk.com
  • *.signalfx.com

Whitelist individual domains

If you are unable to whitelist all domains that match “*.signalfx.com”, you can whitelist the following:

  • signalfx.com
  • signalfx.zendesk.com
  • ingest.signalfx.com
  • app.signalfx.com
  • api.signalfx.com
  • ui.signalfx.com
  • stream.signalfx.com
  • customer-api.signalfx.com
  • support.signalfx.com
  • dl.signalfx.com
  • www.signalfx.com
  • info.signalfx.com
  • blog.signalfx.com
  • developers.signalfx.com
  • docs.signalfx.com