Skip to main content

Terminal Connectivity

In accordance with the Payment Card Industry Data Security Standard (PCI DSS), maintaining robust firewall rules within your Cardholder Data Environment (CDE) is essential. If you host your own card payment terminal, it becomes part of your CDE, meaning you must implement the appropriate security controls, including strict firewall configurations, to safeguard these devices.

Below are the necessary configurations for your terminal to successfully connect to Monek's Gateway. By adhering to these guidelines, you will ensure that your terminals can reliably and securely connect to Monek's Payment Gateway.

DNS Lookup

Your card machines require DNS functionality to perform lookups, allowing them to locate our services by hostname.

Access to "gateway.monek.com"

Ensure that your terminals connect to our gateway via DNS resolution, as the IP addresses associated with "gateway.monek.com" may change over time. Using DNS helps to accommodate these changes seamlessly.

Current IP Addresses

DNS-based configuration must be used. The IP addresses for gateway.monek.com are provided strictly for informational purposes and do not form part of any service guarantee or commitment:

  • 13.41.221.109
  • 3.9.241.44

Fallback (non-DNS):

  • 35.177.14.51

Important: These IP addresses may be modified, replaced, or withdrawn at any time without notice. Any configuration that relies on static IP whitelisting is strongly discouraged and is implemented entirely at the customer’s own risk.

We make no representations or warranties regarding the stability, availability, or persistence of these IP addresses and expressly disclaim all liability for any direct or indirect loss, interruption, or degradation of service resulting from their use.

Use of DNS (gateway.monek.com) is the only supported and recommended configuration method.

Ports

The terminals currently use the following ports for communication:

  • 8630, 8631, 8640, 8641, 8666
  • 8932, 8933, 8939, 8948, 8949

However, these port numbers may be subject to change with limited notice. To prevent disruption, we recommend configuring your firewall to allow the following port ranges:

  • 8600 to 8699
  • 8900 to 8999

Terminal Management

The terminals will call, mpush1.whatspos.com and api.whatspos.com for remote management and firmware updates

Time

The terminals will call, *.android.pool.ntp.org for time data