Akeyless SaaS Core Services
The Akeyless Gateway is a stateless Docker container, provided as a standalone or as a cluster. To function correctly, it requires public network connectivity to the Akeyless SaaS core services (see the table below).
A basic Gateway deployment would preferably require a Linux Server (VM) with a Docker engine installed. You may download the latest Docker engine on Docker website. You'll need public network access enabled on port 443 to pull a Docker image from the hub.docker.com.
The following table describes the main functionality of Akeyless micro-services:
Service Name | IP | Port | Description |
---|---|---|---|
Console: https://console.akeyless.io | 52.223.11.194, 35.71.185.167, 52.223.35.208, 35.71.147.131, 15.197.228.204, 3.33.247.128 | 443 | Akeyless SaaS platform. |
Vault : https://vault.akeyless.io | 52.223.11.194, 35.71.185.167, 52.223.35.208, 35.71.147.131, 15.197.228.204, 3.33.247.128 | 443 | User Account Management, managing user account, items, and roles. |
Auth : https://auth.akeyless.io | 52.223.11.194, 35.71.185.167, 52.223.35.208, 35.71.147.131, 15.197.228.204, 3.33.247.128 | 443 | Akeyless Authentication service. |
Audit : https://audit.akeyless.io | 52.223.11.194, 35.71.185.167, 52.223.35.208, 35.71.147.131, 15.197.228.204, 3.33.247.128 | 443 | Audit log main service, enables log forwarding from GW & Bastion. |
BIS : https://bis.akeyless.io | 52.223.11.194, 35.71.185.167 | 443 | Billing infrastructure service. |
Gator : https://gator.akeyless.io | 52.223.11.194, 35.71.185.167, 52.223.35.208, 35.71.147.131, 15.197.228.204, 3.33.247.128 | 443 | Main service to sync gateways instances, and connections with Akeyless SaaS. |
MQ : amqps://mq.akeyless.io | 52.223.11.194, 35.71.185.167 | 5671 | Message queue between Akeyless micro-services. |
KFM: https://kfm1.akeyless.io, https://kfm2.akeyless.io, https://kfm3.akeyless.io, | 52.223.11.194, 35.71.185.167, 52.151.230.203, 52.223.35.208, 35.71.147.131, 15.197.228.204, 3.33.247.128 | 443 | Key Fragments Services, enabling full DFC encryption. |
Public Gateway: | 15.197.223.248, 3.33.244.138 | 443 | Public Gateway |
Logs : tcp://log.akeyless.io:9997 tcp://log.akeyless.io:9443 | 35.192.171.171 | 9997, 9443 | GW logs, mainly to be reflected during failure scenarios. |
52.219.107.74 | 443 | S3 bucket to download & update Akeyless CLI versions | |
52.219.176.58 | 443 | S3 bucket to download & update Akeyless official binaries. e.g. |
Note:
When using proxy services, you can use https://sqs.us-east-2.amazonaws.com instead of classic MQ services.
Updated 3 days ago