Which network endpoints (FQDNs) need to be whitelisted for Navori SaaS?
Two fully qualified domain names must be allowed through your firewall or proxy:
Domain | Purpose |
saas.navori.com | Used for communication between the players and the SaaS server. |
saasmediastorage.blob.core.windows.net | Used by players to download content from Navori's cloud storage. |
What port is used for this traffic?
All communication to both endpoints uses TCP port 443 (standard HTTPS). No other inbound or outbound ports are required for SaaS operation.
Does WebSocket traffic need to be enabled?
Yes. WebSocket communication must be permitted in addition to standard HTTPS traffic. This is required for real time communication between players and the SaaS server, and runs over the same saas.navori.com endpoint on port 443.
Are any additional firewall rules required?
No. Beyond the two FQDNs listed above, no further domains need to be whitelisted for standard SaaS operation. Ensure outbound access on port 443 is open to both endpoints and confirm that any proxy or firewall in the network path does not block WebSocket upgrades.
Who should I contact if I need further details on network configuration?
Reach out to your Navori account contact or the Navori support team, who can provide any additional details needed to support a firewall or network review.
