How Your Device Connects
When your device comes online, it queries a single, global hostname. Our DNS system intelligently responds with the IP address of the closest and most performant regional server, ensuring an optimal connection.Official Altostrat IP Addresses and Domains
For your firewall configuration, it is highly recommended to use the primary hostname. However, the specific regional IP addresses are provided below for environments that require IP-based rules.| Hostname / IP Address | Location | Purpose |
|---|---|---|
mgnt.sdx.altostrat.io | Global (Anycast) | Primary Management VPN Endpoint (Recommended) |
45.63.116.182 | π©πͺ Frankfurt, Germany | Regional Server IP (Firewall Rules) |
139.84.235.246 | πΏπ¦ Johannesburg, SA | Regional Server IP (Firewall Rules) |
67.219.108.29 | π¦πΊ Melbourne, Australia | Regional Server IP (Firewall Rules) |
45.77.214.231 | πΊπΈ Seattle, USA | Regional Server IP (Firewall Rules) |
This list was last updated on May 10, 2024. Please check this page periodically for any changes to our infrastructure.
Best Practices for Firewall Configuration
Use Hostnames, Not IPs
Whenever possible, create firewall rules that allow traffic to the hostname
mgnt.sdx.altostrat.io. This ensures your devices can always take advantage of our DNS-based routing and automatic failover in the event of a regional outage.Allow Outbound Traffic
Your firewall must allow outbound connections from your MikroTik devices to our servers on TCP Port 8443. The Management VPN is an outbound connection, so no inbound rules are required.
Keep Your Rules Updated
While our IP addresses are stable, network infrastructure can evolve. We recommend reviewing this page periodically to ensure your firewall rules are current and your devices maintain uninterrupted connectivity.