The Zurich release has arrived! Interested in new features and functionalities? Click here for more

Where to get IP information for an instance for outbound calls to share with API provider?

Go to solution
Nisar3
Giga Guru

yesterday

The owner of one the APIs that our servicenow instance consumes is asking us to share IP details because they are enabling IP Whitelisting at their end. Which IPs should I share? Where will I get that details from?

 

And wouldn't the IP depend on the user's location who is currently logged in which will definitely not be static and keep changing?

0 Helpfuls
  • 711 Views
2 ACCEPTED SOLUTIONS

Go to solution
Bhuvan
Kilo Patron
In response to Nisar3

yesterday

@Nisar3 

 

If API is sending request to ServiceNow, they need to whitelist ServiceNow IPs that corresponds to 'The address to which your instance resolves' section.

 

If ServiceNow is initiating the request to API, use 'Source address used for integrations into customer network with NO VPN' as this is the typical setup used by Customers unless you have setup VPN tunnels.

 

If ServiceNow is initiating the request to API and you have built VPN tunnels for accessing ServiceNow instance, use 'Source address used for integrations into customer network with VPN'.

 

If this helped to answer your query, please mark it helpful & accept the solution.

 

Thanks,

Bhuvan

View solution in original post

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron
In response to Nisar3

yesterday

@Nisar3 

not dependent on the location of the user logged into ServiceNow — it's about the network path from the ServiceNow instance to the external API.

-> it's the 1st Option since ServiceNow is consuming the external API and 3rd party team wants to know request is coming from which IP

-> This is the public IP address that your ServiceNow instance uses to make outbound calls without a VPN, which is typically how ServiceNow connects to external APIs unless you've set up a VPN tunnel.

 

AnkurBawiskar_1-1758521084166.png

 

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader

View solution in original post

15 REPLIES 15

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron
In response to Nisar3

yesterday

@Nisar3 

not dependent on the location of the user logged into ServiceNow — it's about the network path from the ServiceNow instance to the external API.

-> it's the 1st Option since ServiceNow is consuming the external API and 3rd party team wants to know request is coming from which IP

-> This is the public IP address that your ServiceNow instance uses to make outbound calls without a VPN, which is typically how ServiceNow connects to external APIs unless you've set up a VPN tunnel.

 

AnkurBawiskar_1-1758521084166.png

 

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader

Go to solution
Nisar3
Giga Guru
In response to Ankur Bawiskar

yesterday

@Ankur Bawiskar wrote:

-> This is the public IP address that your ServiceNow instance uses to make outbound calls without a VPN, which is typically how ServiceNow connects to external APIs unless you've set up a VPN tunnel.

Is there a way to know if my instance is using a VPN tunnel? We don't have a mid server if that helps.

0 Helpfuls

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron
In response to Nisar3

yesterday

@Nisar3 

since you said mid server is not used for the outbound API call then no VPN exists.

But still check instance details on now support if you find anything related to VPN

OR

Raise a case with ServiceNow and they can immediately confirm if VPN is configured or not.

I believe I have answered your question.

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader

Go to solution
Bhuvan
Kilo Patron
In response to Nisar3

yesterday

@Nisar3 

 

If API is sending request to ServiceNow, they need to whitelist ServiceNow IPs that corresponds to 'The address to which your instance resolves' section.

 

If ServiceNow is initiating the request to API, use 'Source address used for integrations into customer network with NO VPN' as this is the typical setup used by Customers unless you have setup VPN tunnels.

 

If ServiceNow is initiating the request to API and you have built VPN tunnels for accessing ServiceNow instance, use 'Source address used for integrations into customer network with VPN'.

 

If this helped to answer your query, please mark it helpful & accept the solution.

 

Thanks,

Bhuvan

Go to solution
Bhuvan
Kilo Patron
In response to Bhuvan

yesterday

@Nisar3 

 

For Development and Test environments, you typically have only one Data Center. You can allow either the subnet or list of IP Addresses provided to be whitelisted at third-party API end.

 

For Production environment, you will have 2 or more Data Center as part of Network resilience and DR/Failover, make sure to allow whitelisting for both Data Center Subnets or list of IP Addresses.

 

As per community guidelines, you can accept more than one answer as accepted solution. If my responses helped to guide you or answer your query, please mark it helpful & accept the solution.

 

Thanks,

Bhuvan