Whitelisting Nitrogen CDN Requests

To ensure your servers accept traffic from Nitrogen, you must whitelist our requests. We strongly recommend whitelisting by request header, as it provides a more secure and flexible setup.

Method 1: Whitelist by Request Header (Recommended)

Configure your firewall or load balancer to allow incoming requests that contain one of the following HTTP headers.

• General Header:

  x-nv:true
  

• Secret Key Header:

  X-Nv-Access-Key: <domain-specific-secret-hash>
  

  To get the specific value for your X-Nv-Access-Key, please contact the N7 team.

---

Method 2: Whitelist by IP Address

If you cannot whitelist request headers, you can whitelist our edge server IP addresses instead. These IPs are subject to change, so you will need to keep your list updated. This method is not recommended if you use SERA or AVO.

• Nitrogen CDN IPs: Download the XLSX file here.

---

Important Considerations for SERA & AVO Users

If you use SERA or AVO, please be aware that these requests will not always originate from our fixed IP addresses. For these services, you must use the header whitelisting method. For detailed guidance on configuring your whitelisting rules for bot scenarios, please refer to the SERA Scenarios documentation.

For maximum security, you should configure your servers to allow traffic exclusively from Nitrogen.