Documentation Index

Fetch the complete documentation index at: https://kb.vastdata.com/llms.txt

Use this file to discover all available pages before exploring further.

How to Allow VAST Call Home and Support Web Pages Through a Firewall

  • Updated on Jan 24, 2026
  • 1 minute(s) read
Prev Next

For VAST Callhome to function, VMS needs to be able to reach port 443 (HTTPS-SSL) on the following hostnames directly or via a proxy (configured in VMS in the settings panel for callhome):

callhome.vastdata.com
vast-support.s3.eu-west-1.amazonaws.com
vast-support.s3.amazonaws.com
vastdata-releases.s3.amazonaws.com
vastdata-releases.s3.eu-west-1.amazonaws.com

AND

*.cloud.vastdata.com
OR
upload.cloud.vastdata.com
api.cloud.vastdata.com
www.cloud.vastdata.com

Ensure that your firewall has an OUTBOUND firewall rule which has:

  1. VMS-IP as the source address.

  2. All Valid CNode and DNode MGMT IPs as source addresses.

  3. The above hostnames are the destination addresses, specifying port 443.

However, the hostnames listed above are not fixed to a single IP address; instead, they can rotate and point to a different IP each time.  Some firewalls store a fixed IP address for a DNS name, and will only allow the rule to be effective for the stored IP. If that’s the case (the firewall admin will likely know), then the workaround is to modify '/etc/hosts' on all CNodes to hard-code fixed IP addresses for the host list. To do this, add the entries like these below to /etc/hosts on all CNodes (don't remove any existing entries!). You can use nslookup to find the IPs Amazon would normally use for you in your location.

 

####
#trick to limit IPs used
#these are examples, find the IPs best for you using nslookup

52.217.98.52 vast-callhome.s3.amazonaws.com
52.217.83.108 vast-callhomebundle.s3.amazonaws.com
52.87.130.99 callhome.vastdata.com
34.120.146.219 upload.cloud.vastdata.com
34.117.253.217 api.cloud.vastdata.com
34.95.126.161 www.cloud.vastdata.com

#end
#####

To make sure that everything is working, run the following:


curl -v https://vast-callhome.s3.amazonaws.com:443
curl -v https://callhome.vastdata.com:443
 

Note that you will need to restart the VMS container for this to take effect. Consult vastsupport@vastdata.com for this information.

After this is done, create/request firewall rules for the specific IPs above, and send a test call home -- see here for details: Configuring Call Home Settings

 

For Uplink registration, see Registering for Uplink and Connecting Clusters

Related articles