Vulnerability scanner IP addresses
The Managed Risk service uses cloud-based vulnerability scanners to scan your internet-facing assets and report any vulnerabilities.
To make sure the scanners can connect to assets and access as much data as possible, we request that you add their IP addresses to your firewall's allow list. The IP addresses or ranges depend on the data region used by your Sophos Central account.
Check your data region
To check your account's data region, do as follows:
- Sign in to Sophos Central.
-
Click your Profile icon
and select Support settings.
-
On the Support settings page, find the region at the bottom of the page.
-
Add the IPv4 and IPv6 addresses that correspond to that region to your allow list. You can find the IP addresses in the next section.
Find the Sophos IP addresses
Here are the scanner IP addresses for each Sophos Central region.
| Central region | IPv4 | IPv6 |
|---|---|---|
| Asia Pacific (Tokyo) | 13.115.104.128/25 35.73.219.128/25 | 2406:da14:e76:5b00::/56 |
| Asia Pacific (Sydney) | 13.210.1.64/26 3.106.118.128/25 3.26.100.0/24 | 2406:da1c:20f:2f00::/56 |
| Asia Pacific (Mumbai) | 3.108.37.0/24 | 2406:da1a:5b2:8500::/56 |
| Canada (Central) | 3.98.92.0/25 35.182.14.64/26 | 2600:1f11:622:3000::/56 |
| EU (Ireland) | 3.251.224.0/24 | 2a05:d018:f53:4100::/56 |
| EU (Frankfurt) | 18.194.95.64/26 3.124.123.128/25 3.67.7.128/25 54.93.254.128/26 | 2a05:d014:532:b00::/56 |
| US East (Ohio) | 13.59.252.0/25 18.116.198.0/24 3.132.217.0/25 | 2600:1f16:8ca:e900::/56 |
| US West (Oregon) | 34.223.64.0/25 35.82.51.128/25 35.86.126.0/24 35.93.174.0/24 44.242.181.128/25 | 2600:1f14:141:7b00::/56 |
| South America (Sao Paolo) | 15.228.125.0/24 | 2600:1f1e:9a:ba00::/56 |