I’m hoping for some advice please re: the new set of IP addresses that Paypal started using recently for IPNs (Instant Payment Notifications). I am confused about two things:
I already had Paypal’s original IP’s whitelisted on our Cloudflare firewall. However when I went to add the new ones, I was only allowed to add the single IP addresses from their list, not the new ranges. They are using five new IP ranges, this one as an example: 188.8.131.52/21 but when I tried to add that to our whitelist I got the error message “only an IPv4 range (CIDR) value of /16 or /24 is allowed for IP Access Rules”. So how can I add these ranges, which all end in either “/20”, “/21”, “22” or “/23” ?
I also wasn’t sure if I also needed to get these Paypal IP’s whitelisted on our own server’s firewall too. When I asked our webhost, they said they need to know if the Paypal IP’s need to be accepted through a specific port. (Paypal’s information didn’t mention anything about port numbers). I can phone Paypal’s tech support, but thought I would ask here first.
Just to also clarify, that we are getting Paypal’s IPN’s OK at the moment, none missing that I am aware of, but that could be just luck that they have so far come from an IP address that we
have already whitelisted.
Any advice much appreciated!