Applicable for: Enterprise users who using corporate firewall and allow-listing policies
First, make sure you have corporate firewalls and allow-listing policies in place on your network systems. If you are not familiar with this, please contact your company's IT and/or security team for this setup. Non-firewalled customers will not need to do this. Also, you do not need to configure the settings below for the firewall provided by Windows and macOS.
Note
- CLO authentication servers only allow HTTPS communication. Therefore, only port 443 is discussed in this article.
- Until CLO 6.1, the verify: peer option inside the CLO software was disabled. But from CLO 6.2, the verify: peer option has been enabled. So if your company uses SSL Inspection on your secure network system, please check its detailed settings. Again, if your security system has SSL Inspection running, change that option. You will be able to make optional changes only for the CLO software.
- If you are experiencing problems downloading in-app assets, add the domain *.clo-set.com to your allow-list.
- A prominent security service that uses SSL Inspection is Zsclaer™, you can learn more about SSL Inspection on their webpage.
1 Add below info in your corporate firewall settings
-
CLO auth-server IPs
- 52.1.24.50 (for all regions)
- 52.20.29.14 (this is only for mainland-China)
-
Domains to be allowed
- *.clo3d.com
- *.clo-set.com
-
Protocol and port
- https / 443 port
2 Enable the Firewall option in CLO login window
- Note that the information provided below is only for customers using corporate firewall solutions, not Windows or macOS firewall features. Check with your company's IT or security team whether you use a firewall.
Comments