Source Address Information

For installations where APs are installed off-premises and connecting for service through a firewall, relax the access rules to specific service ports because source addresses are not always deterministic.

These settings are required to support remote diagnostics and to set up validation operations.
Table 1. Source address information (examples):
Source IP Port Description Action
0.0.0.0/0

TCP 80

 AP CAPWAP registration Allow
0.0.0.0/0 TCP 443 ExtremeCloud IQ login access and software updates Allow
0.0.0.0/0 TCP 2083 RADSEC Allow
0.0.0.0/0 UDP 12222 AP CAPWAP Allow

Restricted IP list

Extreme Bastion servers:
  • Raleigh Bastion Host 134.141.117.45/32
  • Salem Bastion Host 134.141.4.8/32
  • San Jose: 208.185.247.165
  • Thornhill: 216.123.81.194
  • Bangalore AMR: 14.143.116.18
  • Bangalore Bagmane: 121.244.44.28
  • Bangalore Ecospace: 115.110.157.126
TCP 22 Support SSH Access Allow
TCP 5825 Cluster Admin GUI. Remote diagnostics Allow
9038935-00 Rev. AD