NT-ware and Online Services DNS / IP addresses

The following information is provided to support organizations that have specific restrictions and controls in place within their IT infrastructure.

All communication between uniFLOW Online and company network components is sent encrypted via HTTPS (port 443 outbound). However, if you have restricted access out of your network, general access to the URLs and IP addresses below must be granted to reach uniFLOW Online.

uniFLOW Online email servers are used for various functionality like ‘Scan to Email’, user notifications, user registration etc. Email communication may also be blocked or subject to your company email filtering rules and policies. To ensure email traffic is not blocked we have listed our global uniFLOW Online email servers below which should be added to an ‘Allow List’.

Global hosted services

NT-ware global web services are required to provide uniFLOW Online installations, help material and resources. Please ensure you allow these sites if you are restricting traffic from and or to your organization. ALL IP and URL exclusions are required if restrictions are in place. These provide local and regional resilience and redundancy.

uniFLOW Online resources.

IP address

  • 5.9.111.67, 78.46.35.44, 135.181.0.40, 147.135.37.12, 147.135.1.50

Region specific URLs

EUROPE

DNS

IP

Deployment

<tenant>.eu.uniflowonline.com

40.113.96.203
20.229.132.170
13.74.219.199
40.127.185.122

Tenant creation / uniFLOW SmartClient registration / device registration via device UI 2

www.eu.uniflowonline.com

40.113.96.203
20.229.132.170
13.74.219.199
40.127.185.122

NTWOIS service 3

ntwois.eu.uniflowonline.com

13.73.143.121, 20.123.128.99, 74.234.111.228, 68.219.118.151

Azure IoT Hub 4 7

euiothubuniflow.azure-devices.net

-

Data Collection Agent (DCA) 5

ntwfleetmgmt.eu.uniflowonline.com

20.73.137.50

Send diagnostics trace log button function.

eulstuniflow.blob.core.windows.net

-

uniFLOW SmartClient and MEAP device check for manual trigger of Emergency Mode 6

https://eumanualemergencymode.azurewebsites.net

-

UK

DNS

IP

Deployment

<tenant>.uk.uniflowonline.com

51.132.34.151
20.117.69.178
20.254.155.19
20.90.3.211

Tenant creation / uniFLOW SmartClient registration / device registration via device UI 2

www.uk.uniflowonline.com

51.132.34.151
20.117.69.178
20.254.155.19
20.90.3.211

NTWOIS service 3

ntwois.uk.uniflowonline.com

52.151.72.165, 20.117.73.188, 51.142.165.157, 51.142.148.43

Azure IoT Hub 4 7

ukiothubuniflow.azure-devices.net

-

Data Collection Agent (DCA) 5

ntwfleetmgmt.uk.uniflowonline.com

51.132.215.25

Send diagnostics trace log button function.

uklstuniflow.blob.core.windows.net

-

uniFLOW SmartClient and MEAP device check for manual trigger of Emergency Mode 6

https://ukmanualemergencymode.azurewebsites.net

-

JAPAN

DNS

IP

Deployment

<tenant>.jp.uniflowonline.com

13.71.129.59
20.48.27.190
20.89.234.217
20.210.136.177

Tenant creation / uniFLOW SmartClient registration / device registration via device UI 2

www.jp.uniflowonline.com

13.71.129.59
20.48.27.190
20.89.234.217
20.210.136.177

NTWOIS service3

ntwois.jp.uniflowonline.com

13.78.27.73, 20.222.233.159, 20.89.248.222, 20.89.252.104

Azure IoT Hub 4 7

jpiothubuniflow.azure-devices.net

-

Send diagnostics trace log button function.

jplstuniflow.blob.core.windows.net

-

uniFLOW SmartClient and MEAP device check for manual trigger of Emergency Mode 6

https://jpmanualemergencymode.azurewebsites.net

-

 

AUSTRALIA

DNS

IP

Deployment

<tenant>.au.uniflowonline.com

13.70.152.165
13.77.56.123
20.213.113.137
20.213.113.163

Tenant creation / uniFLOW SmartClient registration / device registration via device UI 2

www.au.uniflowonline.com

13.70.152.165
13.77.56.123
20.213.113.137
20.213.113.163

NTWOIS service 3

ntwois.au.uniflowonline.com

23.101.239.160, 20.211.250.80, 20.5.79.157, 4.196.169.251

Azure IoT Hub 4 7

auiothubuniflow.azure-devices.net

-

Data Collection Agent (DCA) 5

ntwfleetmgmt.au.uniflowonline.com

52.189.235.245

Send diagnostics trace log button function.

aulstuniflow.blob.core.windows.net

-

uniFLOW SmartClient and MEAP device check for manual trigger of Emergency Mode 6

https://aumanualemergencymode.azurewebsites.net

-

SINGAPORE

DNS

IP

Deployment

<tenant>.sg.uniflowonline.com

52.187.22.132
52.187.9.247
20.187.95.207
20.205.105.189

Tenant creation / uniFLOW SmartClient registration / device registration via device UI 2

www.sg.uniflowonline.com

52.187.22.132
52.187.9.247
20.187.95.207
20.205.105.189

NTWOIS service 3

ntwois.sg.uniflowonline.com

52.163.85.154, 20.205.191.8, 20.239.83.198, 20.239.86.61

Azure IoT Hub 4 7

sgiothubuniflow.azure-devices.net

-

Data Collection Agent (DCA) 5

ntwfleetmgmt.sg.uniflowonline.com

20.197.116.123

Send diagnostics trace log button function.

http://sglstuniflow.blob.core.windows.net

-

uniFLOW SmartClient and MEAP device check for manual trigger of Emergency Mode 6

https://sgmanualemergencymode.azurewebsites.net

-

USA

DNS

IP

Deployment

<tenant>.us.uniflowonline.com

137.117.90.136
20.232.127.101
20.237.143.131
20.245.128.92

Tenant creation / uniFLOW SmartClient registration / device registration via device UI 2

www.us.uniflowonline.com

137.117.90.136
20.232.127.101
20.237.143.131
20.245.128.92

NTWOIS service 3

ntwois.us.uniflowonline.com

137.116.127.38, 20.25.54.169, 20.253.243.215, 20.253.187.40

Azure IoT Hub 4 7

usiothubuniflow.azure-devices.net

-

Data Collection Agent (DCA) 5

ntwfleetmgmt.us.uniflowonline.com

40.76.130.104

Send diagnostics trace log button function.

uslstuniflow.blob.core.windows.net

-

uniFLOW SmartClient and MEAP device check for manual trigger of Emergency Mode 6

https://usmanualemergencymode.azurewebsites.net

-

uniFLOW Online Global Services

Deployment Status Integration 8

statusuniflowonline.azureedge.net  

Dynamic IP, Microsoft managed.

uniFLOW Online email servers

Europe

94.130.72.34, 94.130.97.143

Europe

94.130.72.34, 94.130.97.143

Australia

52.255.51.184, 139.99.200.184

USA

40.114.54.68, 5.161.118.71

Japan

13.73.5.41, 40.74.132.151

Singapore

52.187.66.27, 15.235.163.86

United Kingdom

51.140.48.125, 51.195.253.209

If you have configured uniFLOW Online to use your own email provider, it is not necessary to add these IP addresses.

 

[1] Due to some legacy device support the download for MEAP applets takes place via HTTP at present.
[2] For creating tenants and onboarding devices via the Canon imageRUNNER ADVANCE device user interface. It will also need to resolve and access ‘device02.c-cdsknn.net', ‘a02.c-cdsknn.net', and ‘device.c-cdsknn.net'. The listed cdsknn.net URL’s will resolve to a ‘CloudFront’ Content Delivery Service hosted on AWS. This will also need to be explicitly listed if you are filtering these URL’s, https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/LocationsOfEdgeServers.html .
[3] NT-ware OAuth Identification Service.
[4] IoT Hub is a managed service, hosted in the cloud, which acts as a central message hub for bi-directional communication between the uniFLOW SmartClient and the devices it manages. IOT Hub has a temporary "static" address, which is subject to change over time, so there is no IP address that can be documented here. Microsoft suggests following best practices, described in this article https://docs.microsoft.com/en-us/azure/iot-hub/iot-hub-understand-ip-address .
[5] The Data Collection Agent (DCA) will enable the device discovery and capture device information. It will discover new devices, take meter readings and monitor all devices' device status, independent of their brand or model.
[6] This URL is required for the uniFLOW SmartClient and MEAP devices to perform a check on Microsoft Azure functionality if a tenant or deployment is manually forced into Emergency Mode. Note that the URL has a temporary "static" IP address, which is subject to change over time so that no IP address can be documented. Microsoft suggests following the best practices described in this article.
[7] The uniFLOW SmartClient utilizes IoT standard protocols like MQTT (via WebSocket) for real-time communication with uniFLOW Online. If SSL inspection is configured within the proxy/firewall application MQTT (via WebSocket) must be supported. In case this is not supported, the Azure IoT Hub must be bypassed for SSL inspection.

[8] Display of current uniFLOW Online deployment status to end-users on Canon MEAP enabled devices based on https://status.uniflowonline.com.