How to Whitelist Our Agents

Troubleshooting Updated Apr 2, 2026

If your server uses a firewall, IP allowlist, or rate limiter, you may need to whitelist Chglog's monitoring agents so they can reach your services.

Why whitelist?

Chglog's agents make HTTP requests, DNS queries, and TCP connections from fixed IP addresses. If your firewall blocks unknown IPs, agent requests will be rejected and your checks will show false 'down' alerts.

Finding the IP list

Visit the Agent IP Addresses page for the current list of all agent nodes, their locations, hostnames, and IP addresses.

Firewall examples

iptables (Linux)

iptables -A INPUT -s 159.69.187.170 -j ACCEPT
iptables -A INPUT -s 5.161.68.227 -j ACCEPT
iptables -A INPUT -s 128.199.214.87 -j ACCEPT

ufw (Ubuntu)

ufw allow from 159.69.187.170
ufw allow from 5.161.68.227
ufw allow from 128.199.214.87

AWS Security Group

Add inbound rules for each agent IP on the relevant port (e.g. 443 for HTTPS). Use /32 CIDR notation for individual IPs.

Cloudflare

In Security → WAF → Tools, add each agent IP to the IP Access Rules with action Allow.

Keep the list updated

When we add new agent nodes, we'll update the Agent IP Addresses page. Check back periodically or follow our changelog for announcements.

Back to Troubleshooting