Von Application Insights und Log Analytics verwendete IP-AdressenIP addresses used by Application Insights and Log Analytics

Der Dienst Azure Application Insights verwendet eine Reihe von IP-Adressen.The Azure Application Insights service uses a number of IP addresses. Diese müssen Ihnen gegebenenfalls bekannt sein, wenn die überwachte App hinter einer Firewall gehostet wird.You might need to know these addresses if the app that you are monitoring is hosted behind a firewall.

Hinweis

Diese Adressen sind zwar statisch, müssen jedoch unter Umständen gelegentlich geändert werden.Although these addresses are static, it's possible that we will need to change them from time to time. Sämtlicher Datenverkehr für Application Insights stellt ausgehenden Datenverkehr dar, mit Ausnahme der Überwachung der Verfügbarkeit und Webhooks, für die eingehende Firewallregeln erforderlich sind.All Application Insights traffic represents outbound traffic with the exception of availability monitoring and webhooks which require inbound firewall rules.

Tipp

Sie können Azure-Netzwerkdiensttags verwenden, um bei Verwendung von Azure-Netzwerksicherheitsgruppen den Zugriff zu verwalten.You can use Azure network service tags to manage access if you are using Azure Network Security Groups. Wenn Sie den Zugriff für Hybrid-/lokale Ressourcen verwalten, können Sie die entsprechenden IP-Adressenlisten als JSON-Dateien herunterladen, die wöchentlich aktualisiert werden.If you are managing access for hybrid/on premises resources you can download the equivalent IP address lists as JSON files which are updated each week: . Um alle Ausnahmen in diesem Artikel abzudecken, müssen Sie für Dienste diese Tags verwenden: ActionGroup, ApplicationInsightsAvailability, AzureMonitor.To cover all the exceptions in this article you would need to use the service tags: 'ActionGroup', 'ApplicationInsightsAvailability', 'AzureMonitor'.

Sie können alternativ diese Seite als RSS-Feed abonnieren, indem Sie https://github.com/MicrosoftDocs/azure-docs/commits/master/articles/azure-monitor/app/ip-addresses.md.atom Ihrem bevorzugten RSS-/ATOM-Reader hinzufügen, um Benachrichtigungen zu den neuesten Änderungen zu erhalten.Alternatively, you can subscribe to this page as a RSS feed by adding https://github.com/MicrosoftDocs/azure-docs/commits/master/articles/azure-monitor/app/ip-addresses.md.atom to your favorite RSS/ATOM reader to get notified of the latest changes.

Ausgehende PortsOutgoing ports

In der Serverfirewall müssen einige ausgehende Ports geöffnet werden, damit das Application Insights-SDK und/oder der Statusmonitor Daten an das Portal senden kann:You need to open some outgoing ports in your server's firewall to allow the Application Insights SDK and/or Status Monitor to send data to the portal:

ZweckPurpose URLURL IPIP PortsPorts
TelemetrieTelemetry dc.applicationinsights.azure.comdc.applicationinsights.azure.com
dc.applicationinsights.microsoft.comdc.applicationinsights.microsoft.com
dc.services.visualstudio.comdc.services.visualstudio.com
40.114.241.14140.114.241.141
104.45.136.42104.45.136.42
40.84.189.10740.84.189.107
168.63.242.221168.63.242.221
52.167.221.18452.167.221.184
52.169.64.24452.169.64.244
40.85.218.17540.85.218.175
104.211.92.54104.211.92.54
52.175.198.7452.175.198.74
51.140.6.2351.140.6.23
40.71.12.23140.71.12.231
13.69.65.2213.69.65.22
13.78.108.16513.78.108.165
13.70.72.23313.70.72.233
20.44.8.720.44.8.7
13.86.218.24813.86.218.248
40.79.138.4140.79.138.41
52.231.18.24152.231.18.241
13.75.38.713.75.38.7
102.133.155.50102.133.155.50
52.162.110.6752.162.110.67
191.233.204.248191.233.204.248
13.69.66.14013.69.66.140
13.77.52.2913.77.52.29
51.107.59.18051.107.59.180
40.71.12.23540.71.12.235
20.44.8.1020.44.8.10
40.71.13.16940.71.13.169
13.66.141.15613.66.141.156
40.71.13.17040.71.13.170
13.69.65.2313.69.65.23
20.44.17.020.44.17.0
20.36.114.20720.36.114.207
51.116.155.24651.116.155.246
51.107.155.17851.107.155.178
51.140.212.6451.140.212.64
13.86.218.25513.86.218.255
20.37.74.24020.37.74.240
65.52.250.23665.52.250.236
13.69.229.24013.69.229.240
52.236.186.21052.236.186.210
443443
Live Metrics StreamLive Metrics Stream live.applicationinsights.azure.comlive.applicationinsights.azure.com
rt.applicationinsights.microsoft.comrt.applicationinsights.microsoft.com
rt.services.visualstudio.comrt.services.visualstudio.com
23.96.28.3823.96.28.38
13.92.40.19813.92.40.198
40.112.49.10140.112.49.101
40.117.80.20740.117.80.20740.117.80.207
157.55.177.6157.55.177.6
104.44.140.84104.44.140.84
104.215.81.124104.215.81.124
23.100.122.11323.100.122.113
443443

StatusmonitorStatus Monitor

Statusmonitorkonfiguration – nur erforderlich, wenn Änderungen vorgenommen werden.Status Monitor Configuration - needed only when making changes.

ZweckPurpose URLURL IPIP PortsPorts
KonfigurationConfiguration management.core.windows.net 443
KonfigurationConfiguration management.azure.com 443
KonfigurationConfiguration login.windows.net 443
KonfigurationConfiguration login.microsoftonline.com 443
KonfigurationConfiguration secure.aadcdn.microsoftonline-p.com 443
KonfigurationConfiguration auth.gfx.ms 443
KonfigurationConfiguration login.live.com 443
InstallationInstallation globalcdn.nuget.org, packages.nuget.org ,api.nuget.org/v3/index.json nuget.org, api.nuget.org, dc.services.vsallin.netglobalcdn.nuget.org, packages.nuget.org ,api.nuget.org/v3/index.json nuget.org, api.nuget.org, dc.services.vsallin.net 443

VerfügbarkeitstestsAvailability tests

Diese Liste enthält die Adressen, von denen aus Verfügbarkeitswebtests durchgeführt werden.This is the list of addresses from which availability web tests are run. Wenn Sie Webtests für Ihre App durchführen möchten, Ihr Webserver aber auf die Versorgung bestimmter Clients beschränkt ist, müssen Sie eingehenden Datenverkehr von unseren Verfügbarkeitstestservern zulassen.If you want to run web tests on your app, but your web server is restricted to serving specific clients, then you will have to permit incoming traffic from our availability test servers.

DiensttagService tag

Wenn Sie Azure-Netzwerksicherheitsgruppen verwenden, fügen Sie einfach eine Eingangsportregel hinzu, um Datenverkehr von Application Insights-Verfügbarkeitstests zuzulassen, indem Sie Diensttag als Quelle und ApplicationInsightsAvailability als Quelldiensttag auswählen.If you are using Azure Network Security Groups, simply add an inbound port rule to allow traffic from Application Insights availability tests by selecting Service Tag as the Source and ApplicationInsightsAvailability as the Source service tag.

Wählen Sie unter „Einstellungen“ die Option „Eingangssicherheitsregeln“ und dann am oberen Rand der Registerkarte „Hinzufügen“ aus. Under settings select Inbound security rules and then select add at the top of the tab

Registerkarte „Eingangssicherheitsregel hinzufügen“Add inbound security rule tab

Öffnen Sie die Ports 80 (HTTP) und 443 (HTTPS) für eingehenden Datenverkehr von folgenden Adressen (die IP-Adressen sind nach Speicherort gruppiert):Open ports 80 (http) and 443 (https) for incoming traffic from these addresses (IP addresses are grouped by location):

Nach Speicherort gruppierte AdressenAddresses grouped by location

Hinweis

Diese Adressen sind anhand der Notation für klassenloses domänenübergreifendes Routing (Classless Inter-Domain Routing, CIDR) aufgelistet.These addresses are listed using Classless Inter-Domain Routing (CIDR) notation. Das bedeutet, dass ein Eintrag wie z. B. 51.144.56.112/28 16 IP-Adressen von 51.144.56.112 bis 51.144.56.127 entspricht.This means that an entry like 51.144.56.112/28 is equivalent to 16 IPs starting at 51.144.56.112 and ending at 51.144.56.127.

Australia East
20.40.124.176/28
20.40.124.240/28
20.40.125.80/28

Brazil South
191.233.26.176/28
191.233.26.128/28
191.233.26.64/28

France Central (Formerly France South)
20.40.129.96/28
20.40.129.112/28
20.40.129.128/28
20.40.129.144/28

France Central
20.40.129.32/28
20.40.129.48/28
20.40.129.64/28
20.40.129.80/28

East Asia
52.229.216.48/28
52.229.216.64/28
52.229.216.80/28

North Europe
52.158.28.64/28
52.158.28.80/28
52.158.28.96/28
52.158.28.112/28

Japan East
52.140.232.160/28
52.140.232.176/28
52.140.232.192/28

West Europe
51.144.56.96/28
51.144.56.112/28
51.144.56.128/28
51.144.56.144/28
51.144.56.160/28
51.144.56.176/28

UK South
51.105.9.128/28
51.105.9.144/28
51.105.9.160/28

UK West
20.40.104.96/28
20.40.104.112/28
20.40.104.128/28
20.40.104.144/28

Southeast Asia
52.139.250.96/28
52.139.250.112/28
52.139.250.128/28
52.139.250.144/28

West US
40.91.82.48/28
40.91.82.64/28
40.91.82.80/28
40.91.82.96/28
40.91.82.112/28
40.91.82.128/28

Central US
13.86.97.224/28
13.86.97.240/28
13.86.98.48/28
13.86.98.0/28
13.86.98.16/28
13.86.98.64/28

North Central US
23.100.224.16/28
23.100.224.32/28
23.100.224.48/28
23.100.224.64/28
23.100.224.80/28
23.100.224.96/28
23.100.224.112/28
23.100.225.0/28

South Central US
20.45.5.160/28
20.45.5.176/28
20.45.5.192/28
20.45.5.208/28
20.45.5.224/28
20.45.5.240/28

East US
20.42.35.32/28
20.42.35.64/28
20.42.35.80/28
20.42.35.96/28
20.42.35.112/28
20.42.35.128/28

Azure US Government (Not needed if you are an Azure Public cloud customer)

20.140.48.160/27
20.140.56.160/27
20.140.64.160/27
20.140.72.160/27
52.127.49.96/27

Application Insights- und Log Analytics-APIsApplication Insights & Log Analytics APIs

ZweckPurpose URIURI IPIP PortsPorts
APIAPI api.applicationinsights.io
api1.applicationinsights.io
api2.applicationinsights.io
api3.applicationinsights.io
api4.applicationinsights.io
api5.applicationinsights.io
dev.applicationinsights.io
dev.applicationinsights.microsoft.com
dev.aisvc.visualstudio.com
www.applicationinsights.io
www.applicationinsights.microsoft.com
www.aisvc.visualstudio.com
api.loganalytics.io
*.api.loganalytics.io
dev.loganalytics.io
docs.loganalytics.io
www.loganalytics.io
20.37.52.18820.37.52.188
20.37.53.23120.37.53.231
20.36.47.13020.36.47.130
20.40.124.020.40.124.0
20.43.99.15820.43.99.158
20.43.98.23420.43.98.234
13.70.127.6113.70.127.61
40.81.58.22540.81.58.225
20.40.160.12020.40.160.120
23.101.225.15523.101.225.155
52.139.8.3252.139.8.32
13.88.230.4313.88.230.43
52.230.224.23752.230.224.237
52.242.230.20952.242.230.209
52.173.249.13852.173.249.138
52.229.218.22152.229.218.221
52.229.225.652.229.225.6
23.100.94.22123.100.94.221
52.188.179.22952.188.179.229
52.226.151.25052.226.151.250
52.150.36.18752.150.36.187
40.121.135.13140.121.135.131
20.44.73.19620.44.73.196
20.41.49.20820.41.49.208
40.70.23.20540.70.23.205
20.40.137.9120.40.137.91
20.40.140.21220.40.140.212
40.89.189.6140.89.189.61
52.155.118.9752.155.118.97
52.156.40.14252.156.40.142
23.102.66.13223.102.66.132
52.231.111.5252.231.111.52
52.231.108.4652.231.108.46
52.231.64.7252.231.64.72
52.162.87.5052.162.87.50
23.100.228.3223.100.228.32
40.127.144.14140.127.144.141
52.155.162.23852.155.162.238
137.116.226.81137.116.226.81
52.185.215.17152.185.215.171
40.119.4.12840.119.4.128
52.171.56.17852.171.56.178
20.43.152.4520.43.152.45
20.44.192.21720.44.192.217
13.67.77.23313.67.77.233
51.104.255.24951.104.255.249
51.104.252.1351.104.252.13
51.143.165.2251.143.165.22
13.78.151.15813.78.151.158
51.105.248.2351.105.248.23
40.74.36.20840.74.36.208
40.74.59.4040.74.59.40
13.93.233.4913.93.233.49
52.247.202.9052.247.202.90
80, 44380,443
Azure-Erweiterung für PipelineanmerkungenAzure Pipeline annotations extension aigs1.aisvc.visualstudio.comaigs1.aisvc.visualstudio.com dynamischdynamic 443443

Application Insights AnalyticsApplication Insights Analytics

ZweckPurpose URIURI IPIP PortsPorts
Analytics-PortalAnalytics Portal analytics.applicationinsights.ioanalytics.applicationinsights.io dynamischdynamic 80, 44380,443
CDNCDN applicationanalytics.azureedge.netapplicationanalytics.azureedge.net dynamischdynamic 80, 44380,443
Medien-CDNMedia CDN applicationanalyticsmedia.azureedge.netapplicationanalyticsmedia.azureedge.net dynamischdynamic 80, 44380,443

Hinweis: Für die Domäne „*.applicationinsights.io“ ist das Application Insights-Team verantwortlich.Note: *.applicationinsights.io domain is owned by Application Insights team.

Log Analytics-PortalLog Analytics Portal

ZweckPurpose URIURI IPIP PortsPorts
PortalPortal portal.loganalytics.ioportal.loganalytics.io dynamischdynamic 80, 44380,443
CDNCDN applicationanalytics.azureedge.netapplicationanalytics.azureedge.net dynamischdynamic 80, 44380,443

Hinweis: Die Domäne „*.loganalytics.io“ ist im Besitz des Log Analytics-Teams.Note: *.loganalytics.io domain is owned by the Log Analytics team.

Azure-Portalerweiterung für Application InsightsApplication Insights Azure portal Extension

ZweckPurpose URIURI IPIP PortsPorts
Erweiterung für Application InsightsApplication Insights Extension stamp2.app.insightsportal.visualstudio.comstamp2.app.insightsportal.visualstudio.com dynamischdynamic 80, 44380,443
Erweiterungs-CDN für Application InsightsApplication Insights Extension CDN insightsportal-prod2-cdn.aisvc.visualstudio.cominsightsportal-prod2-cdn.aisvc.visualstudio.com
insightsportal-prod2-asiae-cdn.aisvc.visualstudio.cominsightsportal-prod2-asiae-cdn.aisvc.visualstudio.com
insightsportal-cdn-aimon.applicationinsights.ioinsightsportal-cdn-aimon.applicationinsights.io
dynamischdynamic 80, 44380,443

SDKs für Application InsightsApplication Insights SDKs

ZweckPurpose URIURI IPIP PortsPorts
JS-SDK-CDN für Application InsightsApplication Insights JS SDK CDN az416426.vo.msecnd.netaz416426.vo.msecnd.net dynamischdynamic 80, 44380,443

Webhooks der AktionsgruppeAction Group webhooks

ZweckPurpose IPIP PortsPorts
WarnungenAlerting 13.72.19.23213.72.19.232
13.106.57.18113.106.57.181
13.106.54.313.106.54.3
13.106.54.1913.106.54.19
13.106.38.14213.106.38.142
13.106.38.14813.106.38.148
13.106.57.19613.106.57.196
13.106.57.19713.106.57.197
52.244.68.11752.244.68.117
52.244.65.13752.244.65.137
52.183.31.052.183.31.0
52.184.145.16652.184.145.166
51.4.138.19951.4.138.199
51.5.148.8651.5.148.86
51.5.149.1951.5.149.19
443443

ProfilerProfiler

ZweckPurpose URIURI IPIP PortsPorts
AgentAgent agent.azureserviceprofiler.netagent.azureserviceprofiler.net
*.agent.azureserviceprofiler.net*.agent.azureserviceprofiler.net
20.190.60.3820.190.60.38
20.190.60.3220.190.60.32
52.173.196.23052.173.196.230
52.173.196.20952.173.196.209
23.102.44.21123.102.44.211
23.102.45.21623.102.45.216
13.69.51.21813.69.51.218
13.69.51.17513.69.51.175
138.91.32.98138.91.32.98
138.91.37.93138.91.37.93
40.121.61.20840.121.61.208
40.121.57.240.121.57.2
51.140.60.23551.140.60.235
51.140.180.5251.140.180.52
52.138.31.11252.138.31.112
52.138.31.12752.138.31.127
104.211.90.234104.211.90.234
104.211.91.254104.211.91.254
13.70.124.2713.70.124.27
13.75.195.1513.75.195.15
52.185.132.10152.185.132.101
52.185.132.17052.185.132.170
20.188.36.2820.188.36.28
40.89.153.17140.89.153.171
52.141.22.23952.141.22.239
52.141.22.14952.141.22.149
102.133.162.233102.133.162.233
102.133.161.73102.133.161.73
191.232.214.6191.232.214.6
191.232.213.239191.232.213.239
443443
PortalPortal gateway.azureserviceprofiler.netgateway.azureserviceprofiler.net dynamischdynamic 443443
StorageStorage *.core.windows.net*.core.windows.net dynamischdynamic 443443

Debuggen von MomentaufnahmenSnapshot Debugger

Hinweis

Profiler und Momentaufnahmedebugger teilen sich den gleichen Satz von IP-Adressen.Profiler and Snapshot Debugger share the same set of IP addresses.

ZweckPurpose URIURI IPIP PortsPorts
AgentAgent ppe.azureserviceprofiler.netppe.azureserviceprofiler.net
*.ppe.azureserviceprofiler.net*.ppe.azureserviceprofiler.net
20.190.60.3820.190.60.38
20.190.60.3220.190.60.32
52.173.196.23052.173.196.230
52.173.196.20952.173.196.209
23.102.44.21123.102.44.211
23.102.45.21623.102.45.216
13.69.51.21813.69.51.218
13.69.51.17513.69.51.175
138.91.32.98138.91.32.98
138.91.37.93138.91.37.93
40.121.61.20840.121.61.208
40.121.57.240.121.57.2
51.140.60.23551.140.60.235
51.140.180.5251.140.180.52
52.138.31.11252.138.31.112
52.138.31.12752.138.31.127
104.211.90.234104.211.90.234
104.211.91.254104.211.91.254
13.70.124.2713.70.124.27
13.75.195.1513.75.195.15
52.185.132.10152.185.132.101
52.185.132.17052.185.132.170
20.188.36.2820.188.36.28
40.89.153.17140.89.153.171
52.141.22.23952.141.22.239
52.141.22.14952.141.22.149
102.133.162.233102.133.162.233
102.133.161.73102.133.161.73
191.232.214.6191.232.214.6
191.232.213.239191.232.213.239
443443
PortalPortal ppe.gateway.azureserviceprofiler.netppe.gateway.azureserviceprofiler.net dynamischdynamic 443443
StorageStorage *.core.windows.net*.core.windows.net dynamischdynamic 443443