This article describes the firewall and web proxy rules that must be configured in order to use eSP. Configuration will normally be carried out by a local IT provider.
The N3 facing endpoint uses dynamic hosts that may change IPs as individual nodes change over time; these will always be from CIDR range 10.41.130.64/27. The IPs will be available by resolving the domain tatooine.blackpear.thirdparty.nhs.uk.
Unless advised specifically for your deployment, all traffic uses TCP on port 443.
Web proxy rules
We routinely make requests from our software to the following urls/domains:
- http://www.pyrusium.com/downloads/ (software updates)
- http://www.blackpear.com/downloads/ (software updates)
- https://blackpear-downloads.s3.eu-west-2.amazonaws.com/ProductManager/ (software updates)
- https://pyrusapps.blackpear.com (static content for apps run in Pyrusium)
- https://pyruskit.blackpear.com (CarePlan library for apps - legacy domain)
- https://coresdk.blackpear.com (CarePlan library for apps)
- https://auth.blackpear.com (user authentication requests)
- https://warden-service.blackpear.com (user authorisation requests)
These endpoints use dynamic hosting that change IPs as individual nodes change over time. The IPs will be available by resolving the domain.
Our support technicians also ask users to allow remote desktop access using AwayFromMyDesk: