Skip to main content

Payment Terminal Connectivity

In accordance with the Payment Card Industry Data Security Standard (PCI DSS), maintaining robust firewall rules within your Cardholder Data Environment (CDE) is essential. If you host your own card payment terminal, it becomes part of your CDE, meaning you must implement the appropriate security controls, including strict firewall configurations, to safeguard these devices.

Below are the necessary configurations for your terminal to successfully connect to Monek's Gateway:

1) DNS Lookup Your card machines require DNS functionality to perform lookups, allowing them to locate our services by hostname.

2) Access to "gateway.monek.com" Ensure that your terminals connect to our gateway via DNS resolution, as the IP addresses associated with "gateway.monek.com" may change over time. Using DNS helps to accommodate these changes seamlessly.

3) Current IP Addresses Although DNS is recommended, here are the current IP addresses for "gateway.monek.com":

  • 13.41.221.109
  • 3.9.241.44

Fail back non dns:

  • 35.177.14.51

Please note, these IP addresses may change in the future. If your firewall cannot support DNS lookups, you will need to update these addresses manually when changes occur.

4) Ports The terminals currently use the following ports for communication:

  • 8630, 8631, 8640, 8641, 8666
  • 8932, 8933, 8939, 8948, 8949

However, these port numbers may be subject to change with limited notice. To prevent disruption, we recommend configuring your firewall to allow the following port ranges:

  • 8600 to 8699
  • 8900 to 8999

5) Terminal Management The terminals will call, mpush1.whatspos.com and api.whatspos.com for remote management and firmware updates

6) Time The terminals will call, *.android.pool.ntp.org for time data

By adhering to these guidelines, you will ensure that your terminals can reliably and securely connect to Monek's Gateway.