Retool Cloud IP addresses

Learn how to give Retool Cloud access to your resources.

Version: Cloud and 3.179 Edge

Retool Cloud organizations must ensure that any configured resources, such as APIs and databases, allow access from Retool's IP addresses. If you make use of inbound firewall rules, include the following IP addresses in its allowlist. Refer to your data source or firewall documentation for specific guidance.

Retool is building support for querying firewalled resources without allowlisting Retool’s IP address. To learn more or be considered for early access, contact cloud-connect@retool.com.

By default, Retool uses the AWS us-west-2 region, based in Oregon, US. To route resources through Europe or other regions, see the outbound regions documentation.

To allow Retool access from one of its outbound regions, you must include the necessary IP addresses in your allowlist if you use inbound firewall rules.

us-west-2

CIDR IP addresses

35.90.103.132/30
44.208.168.68/30

Individual IP addresses

35.90.103.132
35.90.103.133
35.90.103.134
35.90.103.135
44.208.168.68
44.208.168.69
44.208.168.70
44.208.168.71

eu-central-1

CIDR IP addresses

3.77.79.248/30

Individual IP addresses

3.77.79.248
3.77.79.249
3.77.79.250
3.77.79.251

ap-southeast-1

Individual IP addresses

47.128.165.252
54.169.175.71
54.255.139.141

If you use Retool Self-hosted, refer to the self-hosted network and storage requirements for additional details.