In order to access the PDQ Connect web app and allow the PDQ Connect Agent to communicate with PDQ Connect, the following network requirements must be met.
PDQ Connect Web App
To access the Connect web app, your firewall must be configured to allow browsers in your environment to reach this URL:
- https://app.pdq.com
PDQ Connect Agent
Outbound Traffic: All outbound traffic from the PDQ Connect Agent to the PDQ servers goes through port 443, using the WebSocket protocol over HTTPS (WSS).
URL Allow List:
Allow the following URLs through your firewall:
https://connect.e9d69694c3d8f7465fd531512c22bd0f.r2.cloudflarestorage.com
https://connect-package-library.e9d69694c3d8f7465fd531512c22bd0f.r2.cloudflarestorage.com
https://app.pdq.com/
https://websocket.app.pdq.com/
(websocket proxy)
IP Address allow list:
PDQ's services are hosted on Cloudflare and Google. You can view Cloudflare's IP ranges here for reference, but it is not necessary or recommended to allow-list these IPs, since your specific destination IP may vary by geographical and network connection/ISP location.
If your Connect agents are experiencing difficulties connecting to our websocket proxy address above, you may allow-list these IPs:
34.54.45.198:443
[2600:1901:0:7cca::]:443
Remote desktop:*.islonline.net:7615
(allow outbound TCP connection)
PDQ Package Library packages: The PDQ Connect Agent will download packages and all included files directly from Connect (via the PDQ and Cloudflare storage URLs listed above) over HTTPS, port 443.
We check the downloaded file's hash to verify that the file was not tampered with.
Depending on how the software vendor has packaged their software, the package installer may be a bootstrapper which downloads additional files from the software vendor directly. In most cases, the bootstrapper will also download over HTTPS (port 443), but some may download over HTTP, port 80. This is dependent on the how the software vendor has made the download available.
Custom packages: The PDQ Connect Agent will download the install file and any additional files from the Cloudflare servers.
PDQ Auth Service
PDQ Connect uses portal.pdq.com and auth2.pdq.com for user management and authentication when logging into the PDQ Connect Web App. Users will need access to the following URLs in order to successfully log into PDQ Connect.
https://auth2.pdq.com/
wss://auth2.pdq.com/
https://portal.pdq.com/