Website was allowed by default

Closing Ticket

Customer Support Line

(888) 662-0874

Parchment IP Address Ranges and Domains

If you're using restrictive firewall or proxy server settings, you or your network admin will need to allow certain domains and IP address ranges to ensure Parchment products and other services work as expected. As a general rule, Parchment recommends a DNS-based allow listing approach. Much of our infrastructure is hosted with Amazon Web Services (AWS) where we take advantage of the highly dynamic capabilities that the platform provides and has a set of IP addresses that span a large range.

Domain Names

Web Applications (ports 80 and 443)







SFTP (port 22)




IP Address Ranges

We currently use a combination of IPs provided by AWS and our other colocation providers. You should allow the following ranges in order to ensure Parchment’s products operate as intended.

Outbound Connections from Parchment

The following IPs are those that Parchment may use for outbound (egress) connections from our platform to yours. Examples of these include SFTP connections and web services calls.

Instead of regularly manually checking for updates to this list, we recommend programmatically updating your rules with a low TTL based on the DNS record we publish with our egress IPs:

Inbound Connections to Parchment

The following IP ranges contain IPs that Parchment uses to host our platform and applications.

In AWS we utilize a combination of AWS Elastic IPs, AWS ELB and Cloudfront. As such, we do not maintain or guarantee that our products will be served consistently from the same IP addresses. If your use case requires you to specify a range of allowed IPs, we suggest that in addition to the ranges above, you allow everything labeled “AMAZON” or “CLOUDFRONT” from this list.


Parchment prefers the use of key based authentication and host validation of our sftp servers. Our sftp host key fingerprints can be found below. If there is a firewall policy requirement, we recommend that you use the DNS entry of the sftp server with a low TTL to minimize any potential connection issues.