In order to have a good experience using the HEIMDAL Security products, we recommend you take a look at the following requirements and configure your environment accordingly.
1. Supported Architecture and OS
2. Requirements
3. IP Addresses and Ports
4. File/process exclusions
Supported Architectures and OS
The HEIMDAL Agent is developed on the 32-bit architecture and can be installed on computers/devices with the following Architectures:
- x86
- x64
- ARM (only on Windows and macOS)
The HEIMDAL Agent can be installed on computers/devices running the following Operating Systems:
Windows
- Windows 10 (32 and 64-bit) - Support for Windows 10 32-bit stopped being offered on the 31st of March 2022;
- Windows 11 (64-bit);
- Windows Server 2012/2012 R2 (32 and 64 bit) - Support for Windows Server 2012/2012 R2 32-bit stopped being offered on the 31st of March 2022;
- Windows Server 2016 (32 and 64-bit) - Support for Windows Server 2016 32-bit stopped being offered on the 31st of March 2022;
- Windows Server 2019 (32 and 64-bit) - Support for Windows Server 2019 32-bit stopped being offered on the 31st of March 2022;
- Windows Server 2022 (64-bit);
macOS
- macOS 10.15 (Catalina);
- macOS 11 (BigSur);
- macOS 12 (Monterey);
- macOS 13 (Ventura)
- macOS 14 (Sonoma)
- macOS 15 (Sequoia) and above.
Linux
- Ubuntu 18.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 23.04 LTS
- Ubuntu 24.04 LTS
Requirements
Before installing the HEIMDAL Agent, make sure your device/endpoints meets the following requirements:
Windows
- Microsoft .NET Framework 4.8 or above (starting with HEIMDAL Agent version 3.7.0 RC);
- Up to 640 MB of disk space;
- At least 250 MB RAM;
- At least 3% of CPU usage when blocking a domain, up to 10% when opening the Heimdal™ Agent, and up to 40% during a scan;
- Local administrator or domain administrator permissions (if the computer is domain-joined) during the installation process;
- User permissions during execution;
- Internet access with the following ports open to traffic: port 53 (to apply the DarkLayer Guard DNS 127.7.7.x), port 443 (to filter traffic over https);
- The HEIMDAL Agent uses the following ports internally: 80 (Custom Block Page), 8001 (Application Control), 57127 (Peer2Peer).
- The HEIMDAL DNS Security Network Log Agent uses port 443.
- The Heimdal RD Viewer uses remote port: 7615.
macOS
- At least 400 MB of disk space;
- At least 4 GB of RAM;
- Administrator permissions during the installation process;
- Manual approval of the DNS Security Extension (for OSs older than Ventura);
- Full Disk Access (for Patch & Assets and Endpoint Detection);
- Internet access with the following ports open to traffic: port 53, port 443 (to filter traffic over https);
Linux (Ubuntu)
- Microsoft .NET 6 Framework
- At least 50 MB of disk space;
- At least 4 GB of RAM;
- sudo permissions during the installation process;
- The Heimdal Agent requires the following prerequisites: curl, unzip, gnupg, lsb-release, netcat and ca-certificates;
- Internet access with the following port open to traffic: port 443;
- (The HEIMDAL Agent is not supported on Red Hat Enterprise Linux at this time, but we are working on making it support these as well).
IP Addresses and Ports
The HEIMDAL Agent needs the following domains/IP addresses to communicate with the HEIMDAL servers. If you are behind a firewall or a proxy, make sure you add the following to the whitelist/allowlist:
HEIMDAL Agent/Dashboard & Core Service
Service | Domain/IP | Port(s) |
---|---|---|
HEIMDAL services | heimdalsecurity.com | 443 |
HEIMDAL services | *.heimdalsecurity.com | 443 |
HEIMDAL Dashboard | 4.210.233.58 | 443 |
HEIMDAL Core Service | 20.31.148.77, 40.87.128.228, 40.121.66.93, 52.172.28.76, 57.150.81.193 | 443 |
DNS Security
Service | Domain/IP | Port(s) |
---|---|---|
DNS Security Block Page | tpeblockserver.trafficmanager.net | 443 |
DNS Security Block Page | blockedbyheimdalsecurity.com | 443 |
DNS Security Block Page | 20.86.55.232, 52.166.12.23 | 443 |
DNS-N LogAgent | 3.68.42.215, 3.122.156.8, 3.75.56.71 | 443 |
DNS-E Full Logging | 52.140.46.52, 40.87.154.237, 40.117.169.91, 40.68.157.46 | 443 |
Application Control
Service | IP Address | Port(s) |
---|---|---|
Application Control | 20.71.146.235 | 443 |
Remote Desktop
Service | Domain/IP | Port(s) |
---|---|---|
Remote Desktop | 91.217.255.149 | 443, 7615 |
ISL Online | *.islonline.net | 443 |
ISL Online Host | *.islonline-host.com | 443, 32000 |
Email Protection
Region | IP Address | Domain | Port(s) |
---|---|---|---|
EU | 20.50.183.144, 20.50.183.146 | eu-esec-01.heimdalsecurity.com | 25 |
EU | 20.50.183.145, 20.50.183.147 | eu-esec-02.heimdalsecurity.com | 25 |
EU | 20.50.183.148, 20.50.183.149 | eu-esec-outbound.heimdalsecurity.com | 25 |
EU | 20.50.183.150, 20.50.183.151 | eu-esec-backup.heimdalsecurity.com | 25 |
US | 20.88.177.217, 20.88.177.218 | us-esec-01.heimdalsecurity.com / us-esec-02.heimdalsecurity.com | 25 |
US | 20.88.177.208, 20.88.177.209 | us-esec-outbound.heimdalsecurity.com | 25 |
UK | 172.166.114.48, 172.166.114.49 | uk-esec-01.heimdalsecurity.com / uk-esec-02.heimdalsecurity.com | 25 |
UK | 172.166.114.50, 172.166.114.51 | uk-esec-outbound.heimdalsecurity.com | 25 |
The full list of domains and IP addresses can be found at the bottom of this page.
File/process exclusions
Suppose you use another antivirus software or another application that scans the browsing traffic. In that case, we recommend you set exceptions for HEIMDAL's processes and for the HEIMDAL installer (which installs in the following path: C:\Program Files (x86)\Heimdal\):
A. HEIMDAL Agent
- Heimdal.AdminPrivilege.exe
- Heimdal.AgentError.exe
- Heimdal.AgentLoader.exe
- Heimdal.Antivirus.exe
- Heimdal.ClientHost.exe
- Heimdal.DarkLayerGuard.exe
- Heimdal.DeliveryManager.exe
- Heimdal.Firewall.exe
- Heimdal.Insights.Service.exe
- Heimdal.MailSentry.exe
- Heimdal.MailSentryMonitor.exe
- Heimdal.MonitorServices.exe
- Heimdal.ProcessLock.exe
- Heimdal.ProcessLock.Elevator.exe
- Heimdal.ProcessLock.Elevatorx64.exe
- Heimdal.RemoteDesktop.Service
- Heimdal.SetupLauncher.exe
- Heimdal.ThorAgent.exe
- Heimdal.ThorVigilanceScanStarter.exe
- Heimdal.UpdateService.exe
- Heimdal.UptimeChecker.exe
- Heimdal.VigilanceMonitor.exe
- Heimdal.Wizard.exe
B. HEIMDAL Remote Desktop (Viewer and Agent)
- C:\Program Files (x86)\Heimdal\
- %localappdata%\ISL Online Cache\
- %programdata%\ISL Online Cache\