HelpCenter

Explore
Network Requirements - CK
Updated

Purpose

This document aims to assist in selecting the correct network requirements sheet needed for your kiosk based on the POS software and network equipment installed. This document will continue to be updated with the most up-to-date network requirements for CK.

 

Please contact Company Kitchen Support at (877) 280-7373, option 3 if you have any questions related to this document.

To view more network requirements for our various products, see the List of Network Requirements.

 

IMPORTANT NOTE

The attached network requirements will be found in the attachments of this article, as well as below. Please complete the required information and return the form to your contact.

 

Aeris

The Aeris POS will look similar to the following images: 

 

Network Requirements - CK Aeris (Legacy)

Type IP Range Port
Company Kitchen Servers 3.138.91.217
18.218.186.204
3.129.236.128
3.13.249.20
3.133.56.45
3.140.160.88
3.140.60.11
3.142.129.215
3.142.138.27
3.142.17.236
80, 22, 443, 4505, 4506, 13377
UDP: 1196, 123
Heartland Payment Systems (Credit Transactions) 65.118.49.0/24 443
LogMeIn for Maintenance 64.74.103.0/24
64.94.18.0/24
212.118.234.0/24
64.94.46.0/23
63.251.34.0/24
63.251.46.0/23
64.74.17.0/24
64.74.18.0/23
64.95.128.0/23
66.150.108.0/24
67.217.80.0/23
69.25.20.0/23
69.25.247.0/24
95.172.70.0/24
111.221.57.0/24
80, 443
Google DNS (If None Provided) 8.8.8.8
8.8.4.4
53

 

Blaster

Kiosks that run Blaster (Café or Market) can have variations in the network equipment and thus have different requirements.

Blaster POS will look similar to the following images: 

Network Requirements - CK Unifi Router 

Type IP Range Port
Company Kitchen Servers 3.138.91.217
18.218.186.204
3.129.236.128
3.13.249.20
3.133.56.45
3.140.160.88
3.140.60.11
3.142.129.215
3.142.138.27
3.142.17.236
80, 22, 443, 4505, 4506
UDP: 123
 
Kiosk Updates & Security mirrors.digitalocean.com 80
s3.us-west-2.amazonaws.com
s3.us-east-2.amazonaws.com repo.companykitchen.com
443
*.amp.cisco.com 80, 443
UniFi 52.10.133.244 8080, UDP: 3478
OpenVPN 52.24.142.25 UDP: 1194
Heartland Payment Systems (Credit Transactions) 65.118.49.0/24 dev-relay-mqtt.365rm.us 35.211.11.79 365retailmarkets.castlestech.net
http://castles-broker.365rm.us
443, 8883
UDP: 8883, 18732
 
LogMeIn for Maintenance 64.74.103.0/24
64.94.18.0/24
212.118.234.0/24
64.94.46.0/23
63.251.34.0/24
63.251.46.0/23
64.74.17.0/24
64.74.18.0/23
64.95.128.0/23
66.150.108.0/24
67.217.80.0/23
69.25.20.0/23
69.25.247.0/24
95.172.70.0/24
111.221.57.0/24
443
Google DNS (If None Provided) 8.8.8.8
8.8.4.4
53

 

Meraki

If your kiosk has a Meraki router that looks like this, use the following network requirements. 
Meraki Z3C | Rhino Networks

CK Network Requirements: Meraki Router

Type IP Range Port
Company Kitchen Servers 3.138.91.217
18.218.186.204
3.129.236.128
3.13.249.20 
3.133.56.45
3.140.160.88 
3.140.60.11
3.142.129.215
3.142.138.27
3.142.17.236 
80, 22, 443, 4505, 4506
UDP: 1196, 123
 
Kiosk Updates & Security mirrors.digitalocean.com 80
s3.us-west-2.amazonaws.com
s3.us-east-2.amazonaws.com repo.companykitchen.com
443
*.amp.cisco.com 80, 443
Cisco Meraki 158.115.128.0/19
209.206.48.0/20
216.157.128.0/20 
64.62.142.12/32
108.161.147.0/24
199.231.78.0/24  
UDP: 7351, 9350-9351
158.115.128.0/19
209.206.48.0/20
216.157.128.0/20
80, 443, 7734, 7752
158.115.128.0/19
209.206.48.0/20
216.157.128.0/20
ICMP
Heartland Payment Systems (Credit Transactions) 65.118.49.0/24 
dev-relay-mqtt.365rm.us
35.211.11.79 
365retailmarkets.castlestech.net 
http://castles-broker.365rm.us 
443, 8883
UDP: 8883, 18732
 
LogMeIn for Maintenance 64.74.103.0/24
64.94.18.0/24
212.118.234.0/24
64.94.46.0/23 
63.251.34.0/24
63.251.46.0/23
64.74.17.0/24
64.74.18.0/23 
64.95.128.0/23
66.150.108.0/24
67.217.80.0/23
69.25.20.0/23 
69.25.247.0/24
95.172.70.0/24
111.221.57.0/24 
443
Google DNS (If None Provided) 8.8.8.8
8.8.4.4
53

 

Other

If the router used in your kiosk is neither Unifi nor Meraki, then it's most likely a Netgear. These routers will not be cloud managed by CK.

Network Requirements - CK - Netgear

Type IP Range Port
Company Kitchen Servers 3.138.91.217
18.218.186.204
3.129.236.128
3.13.249.20
3.133.56.45
3.140.160.88
3.140.60.11
3.142.129.215
3.142.138.27
3.142.17.236
80, 22, 443, 4505, 4506
UDP: 1196, 123
Kiosk Updates & Security mirrors.digitalocean.com 80
s3.us-west-2.amazonaws.com
s3.us-east-2.amazonaws.com
repo.companykitchen.com
contracts.canonical.com/ esm.ubuntu.com/*
443
*.amp.cisco.com 80, 443
Heartland Payment Systems (Credit Transactions) 65.118.49.0/24
dev-relay-mqtt.365rm.us
35.211.11.79
365retailmarkets.castlestech.net
http://castles-broker.365rm.us
443, 8883
UDP: 8883, 18732
LogMeIn for Maintenance 64.74.103.0/24
64.94.18.0/24
212.118.234.0/24
64.94.46.0/23
63.251.34.0/24
63.251.46.0/23
64.74.17.0/24
64.74.18.0/23
64.95.128.0/23
66.150.108.0/24
67.217.80.0/23
69.25.20.0/23
69.25.247.0/24
95.172.70.0/24
111.221.57.0/24
443
Google DNS (If None Provided) 8.8.8.8
8.8.4.4
53

 

White List Addresses

Description FQDN/IP Ports
Meraki Cloud Communication
  • 108.161.147.0/24
  • 199.231.78.0/24
  • 64.62.142.12/32
  • 54.193.207.248/32
  • 209.206.48.0/20
  • 216.157.128.0/20
  • 158.115.128.0/19
UDP: 7351
Meraki VPN Registry
  • 199.231.78.0/24
  • 64.156.192.245/32
  • 108.161.147.0/24
  • 209.206.48.0/20
UDP: 9350
IPsec VPN
  • 69.39.84.205/32
  • 69.39.84.206/32
UDP: 32768 through 61000
Cisco Umbrella DNS for Meraki Router DHCP assignments
  • 208.67.222.222
  • 208.67.220.220
 
Credit Card Servers
  • 63.241.142.183
  • 63.241.142.205
  • api.apriva.com
UDP/TCP: 11079, 11099 (if Split-Tunneling)
TeamViewer
  • *.teamviewer.com
UDP: 5938  TCP: 5938, 443, 80
Messaging Queue Gateway
  • ssl://b-46fc5d10-881e-459c-bcc6-ad3299fae303-1.mq.us-east-2.amazonaws.com:61617
  • ssl://b-46fc5d10-881e-459c-bcc6-ad3299fae303-2.mq.us-east-2.amazonaws.com:61617
  • ssl://mq1-prod.365rm.com:61617
  • ssl://mq2-prod.365rm.com:61617
  • prodrepo.365smartshop.com
TCP/UDP: 61617, 8155
Order Ahead mobile app authentication service
  • *.365rm.us 
TCP: 443, 80
OS Security & Package Repos
  • prodrepo.365smartshop.com
  • http://ca.archive.ubuntu.com
  • http://security.ubuntu.com
TCP: 443, 80
Operator using POS WiFi for inventory or sales on-site
  • https://readytouchpos.com
  • https://adm.365retailmarkets.com
  • https://adm.365retailmarkets.co.uk
  • https://365mobileinventory.com/login