Advanced administration

This section explains how to perform advanced administration tasks, including your IP and domain whitelists, related to your SonarQube Cloud organization.

Managing your IP whitelist

SonarQube Cloud currently allows the following static IP addresses for outgoing calls to supported DevOps platforms (GitHub, GitLab, Azure DevOps Services, and BitBucket Cloud):

  • 3.68.134.44

  • 3.74.220.70

  • 3.74.69.101

  • 18.196.105.168

  • 3.122.211.192

  • 35.158.229.250

  • 3.253.125.212/30

IP filtering is not supported for any other use case.

For GitHub users, we have added those addresses to our GitHub App for SonarQube Cloud, so they will be automatically applied if you have selected the "Enable IP allow list configuration for installed GitHub Apps" option for your GitHub organization.

Managing your domain whitelist

If you can’t access SonarQube Cloud on your network and your pipeline is hosted within an organization that is secured with a firewall or proxy server, you must add certain IP addresses and domain URLs to the allowlist. To update this, you need to add an outbound rule to your firewall.

Ensure the following domain URLs are allowed for SonarQube Cloud:

  • sonarcloud.io & *.sonarcloud.io, which would cover notifications.sonarcloud.io used for web sockets

  • analysis-sensorcache-eu-central-1-prod.s3.amazonaws.com

  • app.getbeamer.com for the latest news on SonarQube Cloud

  • sonarsource.com (if logged out, users are redirected here)

  • docs.sonarsource.com to view the product documentation. In addition, *.sonarsource.com would provide access to additional content sometimes referenced in the docs.

Last updated

Was this helpful?