This article describes our recommendations for configuring a firewall for use with Zendesk. As part of these recommendations, we’ve included a list of Zendesk’s public IP addresses for your reference below.
- If your server policy restricts inbound traffic only, whitelisting the list of IPs below should suffice.
- If you filter both inbound and outbound traffic:
- We highly recommend whitelisting with both the Fully Qualified Domain Name (FQDN) of your Zendesk as well as the IP addresses below.
- If firewall doesn’t support FQDN-based whitelisting, we recommend you disable outbound filtering or upgrade to a firewall that supports this feature. rather than try to restrict outbound traffic using IPs only, which can cause issues. If you can’t disable outbound filtering or upgrade your firewall you can temporarily work around this by resolving your FQDN to an IP address using this DNS Lookup Tool. However, because the IP address can change at anytime, we don’t recommend using this method.
Outbound Email Servers IP addresses are listed in our SPF record, which we update as needed.
Our SPF record can be read using this Lookup Tool or by using these commands:
host -t TXT mail.zendesk.com
dig txt mail.zendesk.com