Skip to main content
Home
Manager Player Creator Playbook Coach Culture Kit
Español (México) Français (Canada) Português do Brasil

Search the help center

Manager: Firewall and Proxy Exceptions

Updated ~ minute read

This article provides the complete firewall, proxy, CDN, and SFTP allowlist requirements needed for the Alchemy Training System to function properly within your organization’s network environment. It includes required domains, individual service URLs, optional IP addresses, CDN exceptions, supported ports and protocols, HR Integration SFTP configuration details, and Citrix GoTo service requirements used for training, support, and account management. Use this guide when configuring firewalls, proxy servers, content filtering, or network security policies to ensure uninterrupted access to Alchemy services. 

 

Rules for Traffic

Rules to allow traffic may need to be made in your company firewall, proxy server, or both. For web access to Manager, open HTTP(TCP/80) and HTTPS(TCP/443) to the following URLs:

•    *.sistemlms.com 

•    *.alchemysystems.com 

•    *.myalchemy.com

•    *.pendo.io 

•    *.godaddy.com 

If your security policy does not allow for wildcard rules, allow these individual sites:

•    www.sistemlms.com 

•    cb.sistemlms.com 

•    cb-api.sistemlms.com 

•    engine.cdn.prod.sistemlms.com 

•    help.sistemlms.com 

•    static.sistemlms.com 

•    help.myalchemy.com 

•    www.alchemysystems.com 

•    proxy.sistemlms.com 

•    updates.alchemysystems.com 

•    elearning.sistemlms.com 

•    ccdn.prod.sistemlms.com 

•    ocsp.godaddy.com 

•    app.pendo.io 

•    cdn.pendo.io

 

HR Integration

If your company purchased HR Integration, you will need to allow access to our SFTP server. To allow this traffic, open SFTP (TCP/22) to the following location:

•    URL: upload.sistemlms.com 

Additionally, Alchemy’s SFTP servers permit only the following algorithms:

•    Key exchange algorithms: diffie-hellman-group-exchange-sha256 

•    Host key algorithms: ssh-rsa (2048 or longer) 

•    Encryption algorithms: aes256-ctr, aes192-ctr, and aes128-ctr 

•    Message authentication code algorithms: hmac-sha2-512 and hmac-sh2-256

 

Rules for Citrix GoTo Services

Alchemy uses Citrix GoTo services (GoToMeeting, GoToWebinar, GoToAssist) for Player and Manager training as well as meetings with our staff for Account Management and Support issues. To permit this traffic, please allow HTTP (TCP/80) and HTTPS (TCP/443) to the following URLs:

•    *.gotomeeting.com 

•    *.gotowebinar.com 

•    *.fastsupport.gotoassist.com 

•    *.logmein.com

 

For a full list of GoTo’s whitelist and firewall configurations, visit their help page: https://support.goto.com/meeting/help/optimal-firewall-configuration-g2m060010

More in Implementation Set-up

Was this article helpful?
1 out of 1 found this helpful
Return to top

Related articles