All traffic inbound and outbound from the Agent is HTTP WebSocket traffic.
Traffic from the Manager to your Agent(s) is by default using self signed certificates and using WSS (WebSocket Secure) eg. WebSocket via TLS.
The port used for your Agents is 8090 by default, but may be changed. If changed, your firewall rules must reflect this as well.
Firewall rules required for each agent:
- TCP inbound for agent port
- TCP outbound for agent port
- TCP inbound for the corresponding cloud controller gateway
- TCP outbound for the corresponding cloud controller gateway
FQDNs required to be whitelisted for Agent operations:
- gw.gameserver.cloud (Global default)
- ru.gw.gameserver.cloud (Moscow, Russia)
- us-e.gw.gameserver.cloud (US East, used for entirety of NA and SA)
IP resolving
IP addresses for all cloud controllers are not static and might change. Whitelisting based on port/hostname should be preferred.
| Hostname | Loc. | IPv4 | IPv6 | Ports |
| gw.gameserver.cloud | Global | 88.99.150.149 | Not supported | 8080, 8081, 666 |
| ru.gw.gameserver.cloud | Russia | 5.129.200.120 | Not supported | 8000 |
| us-e.gw.gameserver.cloud | NA, SA | 5.78.163.44 | Not supported | 8080 |
