Description
Network filtering within enterprise intranets may cause difficulties when working with Confluent Customer Operations Engineering. All hosts within the confluent.io
domain (i.e. *.confluent.io
) should be added to an allowlist in any network filtering, or firewall application on your network. What follows are some important sites within Confluent's domain that are needed to ensure smooth support communications.
Applies to
Being able to create support tickets and interact with our support team
Resolution
Main Confluent Website: https://www.confluent.io
Main web presence of Confluent, this site provides the ability to download Confluent Platform packages, as well as the ability to read documentation and blogs.
Customer Support Portal: https://support.confluent.io
The Support Portal provides the ability to submit and view currently opened cases. The Confluent Knowledge Base is also accessed via this site.
The confluent.zendesk.com
subdomain also needs to be allowed to prevent issues with signing into Support Portal.
Support Organization Portal: https://support.confluent.io/hc/p/org-portal
Please ensure that confluent-support.app
domain is allowlisted in your network to access this portal.
Universal Login Page: https://login.confluent.io
The Universal Login Page provides centralized login for other Confluent web applications, such as the Support Portal. Without access to this site, you will not be able to log in to the Customer Support Portal.
If not using the recommended
*.confluent.io
wildcard whitelisting, you will need to also addlogin-static.confluent.io
andlogin-service.confluent.io
in addition to the mainlogin.confluent.io
site to the allowlist.
Secure File Transfer: https://secure-transfer.confluent.io
Confluent customers upload logs through the support portal using a secure gateway. Ensure access to the secure-transfer.confluent.io
domain to be able to upload logs and other information to our Export Technical Support engineers.
How to tell if you have access to upload logs:
When filing a ticket from the Submit a Request link, you will see the attachment option at the bottom with a security lock indicating you are all set.
If you see "Add file" with no secure lock along with the error text box, please work with your IT department to get the domains granted below as soon as possible.
The following domains should be allowed to prevent issues with attaching files securely.
https://secure-transfer.confluent.io
https://static-secure-transfer.confluent.io
https://static-confluent.sendsafely.com
https://confluent.sendsafely.com
https://sendsafely-dual-region-us.s3-accelerate.amazonaws.com
https://sendsafely-dual-region-eu.s3-accelerate.amazonaws.com
https://sendsafely-tri-region-us.s3-accelerate.amazonaws.com
https://sendsafely-tri-region-eu.s3-accelerate.amazonaws.com
https://sendsafely-tri-region-ap.s3-accelerate.amazonaws.com
Why allow these domains to ensure secure file transfer?
- Confluent uses SendSafely to encrypt files and track the users who access them (audit history). This is particularly useful for customer logs.
- Access Control: Uploaded files are only accessible by Confluent employees providing support. This ensures that only authorized individuals have access to the files.
- Large File Size Support: File sizes up to 100 GB are supported
- Verification Process: SendSafely attachments to customers are sent as links that require verification that the user is allowed to see that attachment. This adds an extra layer of security to the file sharing process.
- Auto File Retention Policy: SendSafely attachments have a file retention period automatically set, currently at 120 days.