# Allowing IP Addresses for Cloud Scanning

Aikido’s Cloud Scanning checks your cloud environments for misconfigurations (CSPM).

These scans are performed from a fixed set of Aikido IP addresses. To allow scanning, you may need to allowlist these IPs in your cloud provider.

{% hint style="warning" %}
This applies only to cloud misconfiguration scanning (CSPM).

Other Aikido features—such as [container scanning](/code-scanning/miscellaneous/allowing-ip-addresses-for-code-container-scanning.md), [code scanning](/code-scanning/miscellaneous/allowing-ip-addresses-for-code-container-scanning.md), or [api scanning](/dast-surface-monitoring/allowing-ip-addresses-for-dast-surface-monitoring.md)—do not use these IPs.
{% endhint %}

## Why allowlist our IPs?

Some cloud providers or firewall setups block requests from unknown sources. Adding Aikido’s IPs ensures our scanner can reach your environment and report on misconfigurations.

Common use cases in which you need to allowlist IP addresses include:

* Access to specific Azure resources, such as [Key Vaults](https://learn.microsoft.com/en-us/azure/key-vault/general/network-security#key-vault-firewall-enabled-ipv4-addresses-and-ranges---static-ips).
* 3rd-party monitoring systems detecting cloud API requests.

## Current IP addresses

The list of IP addresses used for cloud scanning can be found here:

#### EU-based IP addresses

* 34.240.182.181
* 52.31.217.247

#### US-based IP addresses

* 98.80.32.100
* 52.54.124.156

#### ME-based IP addresses

* 40.172.244.108
* 3.29.255.25


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.aikido.dev/cloud-scanning/connect-your-cloud/allowing-ip-addresses-for-cloud-scanning.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.