Are there blacklisted IP ranges for some AWS services?
We updated some of our infrastructure that we use to pull data from several RETS servers. Since making the change, we are getting errors that we believe are due to the IP of origin of the requests. When we use the same credentials from a local machine, they work.
GAMLS MAAR MIMLS (MI RealSource)
Are you saying you are using AWS to do the pulls and it doesn't work?
But when you do the same pulls locally with the same RETS URLs they work?
If so, can you give me a few AWS IP addresses that I can have network check?
Correct. They fail when our requests originate from our AWS setup and the same calls work locally when testings one off.
126.96.36.199 188.8.131.52 184.108.40.206
Did you try using the RETS Login URL in a browser on the AWS server and see if you get the login prompt?
Haven't tested that way; we will try. This is en existing setup of scheduled jobs and calls that worked seamlessly for all of the noted MLSs' RETS servers until yesterday afternoon when we changed to a new server with new IPs for our traffic. Local logins and pulls via browser work; and, if we use the old infrastructure, then they also work.
Is there anything to indicate that some IPs are blacklisted?
Thanks for your time and support in investigating this.
Locally: Successful. Full expected RETS response.
From new AWS server: "401 - Unauthorized: Access is denied due to invalid credentials."
Update: Digest Auth works locally and on our old system. Digest Auth fails with the new system. Basic Auth does work on the new system.
Are you using HTTPS or HTTP login URLs?
Paragon RETS requires Basic with HTTPS and Digest with HTTP..
We have been trying to use HTTP and digest auth. That is what appears not to work on new setup.
What are you using to connect?
We think this is an issue between the HTTP Proxy being used for our outbound traffic from this system and how paragon has implemented digest auth. We continue to investigate on our side. I will post when there is some clarity on what might be happening on our end.
One thing we did find through trying to use HTTPS with Basic auth is that two of the MLS sites have certificates that throw errors: https://maar.rets.paragonrels.com/ret... https://mimls.rets.paragonrels.com/re... "None of the common names in the certificate match the name that was entered."
In the URL use '-' between mlsid and rets in domain.
Were you able to get these working with HTTPS?