This page provides an overview of the IP Addresses used by Memset for Support Access, Automation, Monitoring and our Additional products (e.g. Intrusion Detection, Vulnerability Scanning etc), it also details the Ports required for normal access. This may vary slightly depending on your Operating System.
Access and Monitoring Details
By default these IPs and Ports will be whitelisted in all Memset Stock Images on our Cloud VPSs and Dedicated Servers, we strongly recommend that you whitelist these IPs in all third party firewalling and similar.
|IP Address / Range||Purpose||cPanel||Linux||Windows||Additional Comments|
|Memset Support Access|
These IPs are the main IPs used by the Memset Support Team to assist with any Technical Queries raised.
Where possible allowing access to all Ports (TCP/UDP) for your server from this IP will assist us to diagnose and resolve any issues you may be experiencing.
Additionally, it is also recommended to allow any other ports for services you commonly use / require support with, to ensure we have access.
|10.128.10.0/23||Memset Support Access||It is also advisable to allow access to Ports 80 and 443 from this IP Range as well so that we can view any websites hosted on your servers if required, However this is not essential for this IP Range.|
|Memset Automation & Support Access|
This table looks at the additional Services available, including Memset Monitoring, Managed Backups, Intrusion Detection, Vulnerability Management and more.
|IP Address / Range||Purpose||Ports to Allow||Additional Comments|
|Memset Monitoring||Where possible for this IP Range we would recommend allowing all TCP / UDP / ICMP Traffic to prevent uninterrupted monitoring and to minimise False Positives.|
(Additional for Dedicated Servers or for Servers with Advanced Monitoring Enabled)
Nagios Remote Plugin used for Advanced Monitoring Rules (e.g. Server Load, Disk Space, etc.) and RAID Array Monitoring in Dedicated Servers.
All IPs Listed for;
|DRAC's (for Dedicated Servers)|
This is only applicable for Dedicated Servers with a DRAC, these Ports need to be open within the Firewall Associated with the DRAC to allow access.
By default the Memset Firewalls will allow access to these Ports as required to the Memset Monitoring System and Memset Support Team.
All IPs Listed for;
|File Fabric (SME) Appliance|
(for R1Soft Backups Only)
At present there is no fixed range of IPs used for our Memset Managed Backups, as such the IP used will vary.
To determine the Backup IP in use for your server, you can run a DNS Lookup using the below format (replacing "<SERVERNAME>" with your Memset Server Name e.g. "demoaa1";
This will display the IP address of the Backup Server in use for this server.
If you are unable to do this, or require further assistance, please contact our Technical Support Team.
|Intrusion Detection||This is an Outgoing Rule and should only be needed if you are running a Stateless Firewall, or have specific Outgoing Port Restrictions configured in your Firewall.|
|220.127.116.11||Vulnerability Management||All TCP, UDP, ICMP|
This is used by our F-Secure Radar Vulnerability Scanning as part of our Vulnerability Management product.
For accurate / complete scan results, all Ports should be accessible from this IP Address.
|See Comments||Website Firewall Platform|
For your Website Firewall Platform you should allow the Firewall IPs access to your server, details on where to obtain these IPs can be found here.
Where possible for these IP Ranges we would recommend allowing all TCP / UDP / ICMP Traffic to prevent uninterrupted access to your Websites
Unless stated otherwise all Ports listed above are of the the TCP Type and for Incoming Traffic.
ICMP (Ping) Traffic
We also strongly recommend that you allow ICMP (Ping) Traffic from each of these IPs listed above, this allows us to check whether the server is responding to ping requests from anyone of our services.
Our Public SSH key can be added to any Server as required (with SSH Access), to allow us access to that server.
The Memset Public SSH key will need to be in place in the 'authorized_keys' file for the user you wish to grant us access to, the key can be downloaded from here;
Memset Public SSH Key
To add this to the Root User, you would append this to;
Root Users Authorized Keys File
To add this to a Custom User, you would append this to (replacing "<USER>" with the username in question;
Custom Users Authorized Keys File
By default our SSH key will be pre-installed in all Linux (including cPanel) servers (with the exception of Cloud IaaS OpenStack Instances) under the "root" user.
In accordance with our Acceptable Usage Policy, Memset should have access to the server at all times, the below excerpt is from our Acceptable Usage Policy;
Customers should not tamper, hinder, delete, or in any way change the functioning of these Memset® administration methods. To do so intentionally will breach the Memset® Terms and Conditions and may affect our ability to deliver in line with the Service Level Agreement.
If you wish to change the user this is stored under, or amend this further, please contact our Technical Support Team to discuss your requirements further.