Network requirements

Retool has a few specific ports that need to be opened when deployed on premise. The only IP address that you need to open up in your network security group is All the following domains resolve to it.

License Checks

Retool connects via HTTPS to on port 443, at least daily, in order to verify that you are using a licensed version of Retool.

Inviting users

Retool connects to on port 443 when inviting a user. We verify that the additional user is authorized under your current billing plan, and then send them the invite via email.

Exception Reporting

Retool sends application exceptions to on port 443 whenever your front-end or back-end encounters an error. Only the error is sent - none of your data / metadata is sent.

Usage Reporting

Retool sends application usage information to on port 443. This data helps us make product decisions by understanding how our users use our product. None of your data / metadata is sent. Only the following events are sent:

  • Page view (url of page)
  • Query save (type of query, name of query)
  • Component creation (type of component)
  • Query preview (type of query, name of query)
  • Adding a resource (type of resource, name of resource)

Events are sent with the hostname, and user email.

Updated 5 months ago

Network requirements

Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.