This article describes the firewall and web proxy rules that must be configured in order to use eRA. Configuration will normally be carried out by a local IT provider.
The N3 facing endpoint uses dynamic hosts that may change IPs as individual nodes change over time; these will always be from CIDR range 10.41.130.64/27. The IPs will be available by resolving the domain tatooine.blackpear.thirdparty.nhs.uk.
Unless advised specifically for your deployment, all traffic uses TCP on port 443.
Web proxy rules
We routinely make requests from our software to the following urls/domains:
- http://www.pyrusium.com/downloads/ (software updates)
- http://www.blackpear.com/downloads/ (software updates)
- https://pyrusapps.blackpear.com (static content for apps run in Pyrusium)
- https://licensing.blackpear.com (software license verification)
- https://auth.blackpear.com (user authentication requests)
- https://warden-service.blackpear.com (user authorisation requests)
Our support technicians also ask users to allow remote desktop access using AwayFromMyDesk: