Whitelist

Whitelist (or walled garden) is a list of domains/web sites that users are able to visit without being authenticated.

Web domains to be included in the whitelist should be added as aaa.domain.com or *.domain.com. Some routers support wildcard record * (like Mikrotik, Ruckus, Cambium, Cradlepoint, Meraki) while others don’t (like LigoWave, Teltonika etc…)

Following domains must be added in the whitelist:

For routers that support the wildcard record

wifihotspot.io
*.starthotspot.com
cdnhotspot.azureedge.net
cdn.starthotspot.com
*t-msedge.net
13.92.228.228
13.90.247.200
40.117.190.72
40.121.151.4

For routers without the wildcard record

wifihotspot.io
cdn.wifihotspot.io
starthotspot.com
cdnhotspot.azureedge.net
cdn.starthotspot.com
13.92.228.228
13.90.247.200
40.117.190.72
40.121.151.4

Users with Whitelabel solution will need to add the following domains in the AP/ router whitelist:

Whitelist for Whitelabel customers only

yourportaldomain.com ( like connect.wifihotspot.io)
yourwewebsite.com ( like wifihotspot.io)
cdnhotspot.azureedge.net
cdn.starthotspot.com
wifihotspot.io
*t-msedge.net
13.92.228.228
13.90.247.200
40.117.190.72
40.121.151.4

For example, in the Mikrotik walled garden you will add:

wifihotspot.io
cdn.wifihotspot.io
cdn.starthotspot.com
*.starthotspot.com
13.92.228.228
13.90.247.200
40.117.190.72
40.121.151.4
*facebook*
*facebook.net
*googleapis*

In Ligowave whitelist you should add:

wifihotspot.io
cdn.wifihotspot.io
cdn.starthotspot.com
starthotspot.com
13.92.228.228
13.90.247.200
40.117.190.72
40.121.151.4
facebook.com
facebook.net
twitter.com
instagram.com
google.com
youtube.com

Social login whitelist

If you want to enable Social network login feature or use Paypal as payment gateway, add further IP’s as per below for each network you plan to support.

CAUTION

Domains added to the whitelist will be always accessible to the users.

This means that your users will be able to use Facebook or other whitelisted social networks and websites without connecting to the network.

If social network domains are removed from the whitelist, the social login feature will not work on the splash page.

Facebook

*.facebook.com
*.facebook.net
*.akamaihd.net
*.fbcdn.net
*.atdmt.com
*.fbsbx.com
——————
facebook.com
facebook.net
akamaihd.net
fbcdn.net
atdmt.com
fbsbx.com
—————–
31.13.24.0/21
157.240.0.0/16
31.13.0.0/16
www.facebook.com
www.facebook.net
connect.facebook.net
maps.googleapis.com
akamaihd.net
staticxx.facebook.com
static.xx.fbcdn.net
pixel.facebook.com
fbsbx.com
– if it does not work, try adding:
45.64.40.0/22
66.220.144.0/20
69.63.176.0/20
69.171.224.0/19
74.119.76.0/22
103.4.96.0/22
129.134.0.0/16
173.252.64.0/18
179.60.192.0/22
185.60.216.0/22
204.15.20.0/22

Twitter

twitter.com
api.twitter.com
*.twimg.com
*.akamaihd.net
*.twitter.com
———–
twitter.com
twimg.com
abs.twitter.com
———–
twitter.com
www.twitter.com
abs.twitter.com
abs.twitimg.com
api.twitter.com
pbs.twimg.com
199.16.156.0/22
199.59.148.0/22
199.96.56.0/21
192.133.76.0/22

LinkedIn

linkedin.com
www.linkedin.com
platform.linkedin.com
slicdn.com
*.linkedin.com
*.licdn.com
*.akamaihd.net
*.akamaiedge.net
———–
linkedin.com
licdn.com
akamaiedge.net
———–
91.225.248.0/23
linkedin.com
www.linkedin.com
platform.linkedin.com
slicdn.com
licdn.com
static.licdn.com
184.51.0.0/16
108.174.0.0/16
– if it does not work, try adding:
103.20.94.0/23
108.174.0.0/22
108.174.4.0/24
108.174.8.0/22
108.174.12.0/23
144.2.0.0/22
144.2.192.0/24
216.52.16.0/23
216.52.18.0/24
216.52.20.0/23
216.52.22.0/24
65.156.227.0/24
8.39.53.0/24
185.63.144.0/24
185.63.147.0/24
199.101.161.0/24
64.152.25.0/24
8.22.161.0/24

Google

accounts.youtube.com
accounts.google.*
ssl.gstatic.com
ssl.google-analytics.com
*.googleusercontent.com
*.akamaihd.net
*.google.com
*.googleapis.com
*.gstatic.com
———–
googleapis.com
gstatic.com
———–
accounts.youtube.com
accounts.google.com
ssl.gstatic.com
ssl.google-analytics.com
googleusercontent.com

Google Play

android.clients.google.com
*.googleapis.com
*.gvt1.com
*.ggpht.com
*.googleusercontent.com
*.gstatic.com
accounts.google.com
accounts.youtube.com
connectivitycheck.android.com
connectivitycheck.gstatic.com

Youtube

youtube.com
*.youtube.com
*.doubleclick.net
*.googlesyndication.com
*.googlevideo.com
*.ytimg.com
———–
ytimg.com
youtube.com
www.youtube.com
doubleclick.net
googlesyndication.com
googlevideo.com

Paypal

paypal.com
sandbox.paypal.com
paypalobjects.com
paypalssl.doubleclick.net
paypal.112.2o7.net
securepics.ebaystatic.com
mobile.paypal.com
m.paypal.com

Stripe

*stripe*
——————
api.stripe.com
stripe
js.stripe.com
m.stripe.network

Authorize.net

secure.authorize.net
authorize.net

Interswitch Quickteller

webpay.interswitchng.com
pwq.sandbox.interswitchng.com
paywith.quickteller.com
mufasa.interswitchng.com
h.online-metrix.net

Payment code should be placed in the Gateway login field.

Please note, these IP ranges and domains are subject to change depending on the social network setup.

Updated on October 1, 2021

Was this article helpful?