Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Source
Mandatory for GCP only
10.210.180.81
NA
10.210.180.81
10.210.180.81
Firewall Request Form
All fields are required, as noted
Destination
Mandatory for GCP only Mandatory for GCP only
10.210.180.81
NA
NA
10.210.180.81
10.9.64.149
10.9.64.150
10.9.64.138
10.9.64.152
10.93.8.170
10.9.64.141
10.93.8.152
10.93.8.153
10.93.8.154
NA 10.93.8.155
10.9.64.1
10.9.64.6
10.9.64.17
10.9.64.7
10.93.8.1
10.93.8.2
10.93.8.7
10.93.8.8
10.93.8.5
10.93.8.6
10.9.64.120
10.9.64.121
10.9.64.122
10.9.64.123
10.9.64.145
10.9.64.146
10.9.64.147
10.9.64.148
10.212.74.7
10.212.74.6
10.216.74.4
10.212.74.13
10.212.74.4
10.216.74.11
10.212.74.10
10.216.74.13
10.216.74.1
10.212.74.14
10.216.74.17
10.212.74.19
10.216.74.16
10.216.74.14
10.212.74.17
10.216.74.9
10.212.74.12
10.216.74.2
10.216.74.3
10.212.74.3
10.216.74.10
10.212.74.11
10.212.74.15
10.212.74.2
10.216.74.15
10.216.74.18
10.216.74.19
10.216.74.6
10.212.74.8
10.216.74.7
10.212.74.1
10.216.74.8
10.212.74.16
10.212.74.5
10.212.74.18
10.216.74.12
10.216.74.5
10.212.74.9
10.6.16.57
10.6.16.59
10.220.6.193
10.220.6.195
t Form
as noted
Protocol/port
or network Description/Reason
Expiration
GCP VPC name protocol object (What is the access for and
Date
name why is the access needed)
NA
NA
NA
NA
NA
NA
TCP : NA
7891,7898,8001-
NA
8005
NA
To monitor Wallet Production
UDP : 7891-
NA Application Servers using ND NA
7892,8001-8005
appliance NA
NA
http/https ports : NA
80, 443, NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
To monitor Wallet Production NA
Application Servers using ND
appliance NA
NA
NA
NA
TCP : NA
NA 7891,7898,8001-
NA
8005
NA
UDP : 7891- NA
7892,8001-8005 NA
NA
NA
http/https ports :
80, 443, NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
TCP : NA
7891,7898,8001- NA
8005
NA
To monitor wallet Production
UDP : 7891- Application Servers using ND NA
7892,8001-8005 appliance NA
NA
http/https
ports:80, 443 NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
NA
TCP :
7891,7898,8001- NA
8005 NA
NA
UDP : 7891- To monitor wallet Production NA
7892,8001-8005 Application Servers using ND
appliance
http/https
ports:80, 443
TCP :
7891,7898,8001-
8005
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
CP team
Add firewall access as follows:
Source
Mandatory for GCP only
35.193.5.238
Google Cloud External IP access → (Network tag : kdxstress-blue-kdxsftp- kohls-kdx-hle
to Public IP (source tag required)
prod)
10.100.145.0/24
Multiple source networks to a →
single destination address/port. 10.100.132.0/24
10.100.134.0/24
Access to or from ranges of IP → 10.1.45.13-10.1.45.15
addresses.
Destination
andatory for GCP only Mandatory for GCP only
cavisson-prd 10.8.23.103
10.207.146.0/24
cavisson-prd kohls-mobile-prod mobile-prod-east1
(Network tag : mob-east)
cavisson-prd
10.8.23.103
10.206.224.0/25
cavisson-prd kohls-cavisson-prd cavisson-prd
(Network tag : https-servers)
kdx-hle-central 65.206.3.78
10.184.106.0/24
openshift-lle 10.188.60.0/24 kohls-cpe-prd cpe-prd
(Network tag : iaas-mysql)
10.184.106.0/24
10.188.60.0/24 kohls-cpe-prd cpe-prd
Network tag(cpe-ssh)
10.1.80.244
10.210.147.2-10.210.147.5
Ecom-Kiosk-Hosts
10.1.42.197
10.1.42.198
a blank line seperates rules
10.2.225.0/26
10.8.225.0/25
10.1.80.0/25
10.2.226.0/25
128.121.47.114
10.1.11.130
s
Protocol/port Description/Reason
or network (What is the access for Expiration
Kohl's owner group
protocol object and why is the access Date
name needed)
Cavisson NetStorm to
HTTPS 1/1/2018 #Dev-Ecomm-DevOps
Mobile prod servers
#Dev-Ecomm-DevOps
tcp/22 SSH access to GDC jump bon/a
Cavisson access to
http
Cavisson webserver for 1/1/2018 #Dev-Ecomm-DevOps
https
peak testing
OnPrem to Openshift
TCP/22 n/a KT-Cloud Solutions-TEST
access for SSH
HTTP
SSH and web access from
HTTPS n/a #Dev-Ecomm-DevOps
ATG Stress nodes
SSH