Whitelist

Whitelist (or walled garden) is a list of domains/web sites that users are able to visit without being authenticated.

Web domains to be included in the whitelist should be added as aaa.domain.com or *.domain.com. Some routers support wildcard record * (like Mikrotik, Ruckus, Cambium, Cradlepoint, Meraki) while others don’t (like Ligowave, Teltonika etc…)

Following domains must be added in the whitelist:

For routers that support the wildcard record

connect.starthotspot.com
*.starthotspot.com
13.92.228.228
13.90.247.200

For routers without the wildcard record

connect.starthotspot.com
cdn.starthotspot.com
starthotspot.com
13.92.228.228
13.90.247.200

For example, in the Mikrotik walled garden you will add:

connect.starthotspot.com
*.starthotspot.com
13.92.228.228
13.90.247.200
*facebook*
*facebook.net
*googleapis*

In Ligowave whitelist you should add:

connect.starthotspot.com
cdn.starthotspot.com
starthotspot.com
13.92.228.228
13.90.247.200
facebook.com
facebook.net
twitter.com
instagram.com
google.com
youtube.com

If you want to enable Social network login feature or use Paypal as payment gateway, add further IP’s as per below for each network you plan to support.

Please note, these IP ranges and domains are subject to change depending on the social network setup.

Facebook

*.facebook.com
*.facebook.net
*.akamaihd.net
*.fbcdn.net
*.atdmt.com
*.fbsbx.com
——————
facebook.com
facebook.net
akamaihd.net
fbcdn.net
atdmt.com
fbsbx.com
—————–
31.13.24.0/21
157.240.0.0/16
31.13.0.0/16
www.facebook.com
www.facebook.net
connect.facebook.net
maps.googleapis.com
akamaihd.net
staticxx.facebook.com
static.xx.fbcdn.net
pixel.facebook.com
fbsbx.com
– if it does not work, try adding:
45.64.40.0/22
66.220.144.0/20
69.63.176.0/20
69.171.224.0/19
74.119.76.0/22
103.4.96.0/22
129.134.0.0/16
173.252.64.0/18
179.60.192.0/22
185.60.216.0/22
204.15.20.0/22

Twitter

twitter.com
api.twitter.com
*.twimg.com
*.akamaihd.net
*.twitter.com
———–
twitter.com
twimg.com
abs.twitter.com
———–
twitter.com
www.twitter.com
abs.twitter.com
abs.twitimg.com
api.twitter.com
pbs.twimg.com
199.16.156.0/22
199.59.148.0/22
199.96.56.0/21
192.133.76.0/22

LinkedIn

linkedin.com
www.linkedin.com
platform.linkedin.com
slicdn.com
*.linkedin.com
*.licdn.com
*.akamaihd.net
*.akamaiedge.net
———–
linkedin.com
licdn.com
akamaiedge.net
———–
91.225.248.0/23
linkedin.com
www.linkedin.com
platform.linkedin.com
slicdn.com
licdn.com
static.licdn.com
184.51.0.0/16
108.174.0.0/16
– if it does not work, try adding:
103.20.94.0/23
108.174.0.0/22
108.174.4.0/24
108.174.8.0/22
108.174.12.0/23
144.2.0.0/22
144.2.192.0/24
216.52.16.0/23
216.52.18.0/24
216.52.20.0/23
216.52.22.0/24
65.156.227.0/24
8.39.53.0/24
185.63.144.0/24
185.63.147.0/24
199.101.161.0/24
64.152.25.0/24
8.22.161.0/24

Google

google.com
www.google.com
clients1.google.com
accounts.youtube.com
accounts.google.*
ssl.gstatic.com
ssl.google-analytics.com
*.googleusercontent.com
*.akamaihd.net
*.google.com
*.googleapis.com
*.gstatic.com
———–
google.com
googleapis.com
gstatic.com
———–
google.com
www.google.com
clients1.google.com
accounts.youtube.com
accounts.google.com
ssl.gstatic.com
ssl.google-analytics.com
googleusercontent.com

Youtube

youtube.com
*.youtube.com
*.doubleclick.net
*.googlesyndication.com
*.googlevideo.com
*.ytimg.com
———–
ytimg.com
youtube.com
www.youtube.com
doubleclick.net
googlesyndication.com
googlevideo.com

Paypal

paypal.com
sandbox.paypal.com
paypalobjects.com
paypalssl.doubleclick.net
paypal.112.2o7.net
securepics.ebaystatic.com
mobile.paypal.com
m.paypal.com

 

Updated on February 7, 2020

Was this article helpful?