Here we describe how to configure your network for point of sale transactions.
When you make a point of sale transaction, your cash register, terminal, and Adyen will need to be able to communicate with one another. The flow of this communication depends on whether your integration uses local or cloud communications, and you will need to ensure that your network is configured to allow access to specific ports and addresses.
Configuring your network
To configure your network for point of sale communications:
If you need to whitelist IP addresses, add Adyen's domains to your firewall's whitelist.
Configure your firewall to allow outgoing HTTPS traffic from the IP addresses of your cash registers and terminals to:
Whitelisting should be based on the DNS name of these URLs. Your firewall should dynamically check for IP address updates, at least every 60 seconds.
Do not hard-code Adyen's IP addresses, as these can change over time. We do not share a list of our IP addresses publicly.
- Open the ports:
- tcp/443 to the internet.
- tcp/8443 on your LAN.
If your integration uses local communications:
- Ensure that your terminal and cash register are connected to the same local network.
- Secure the communications between your cash register and terminal.
- If your cash register and terminal communicate over a serial connection, use hardware flow control.
Once you have configured your network to meet these requirements, you should also review our networking recommendations for further information on preventing communication issues.
To prevent network issues from interfering with your point of sale transactions, we recommend that you:
- Use a segmented network, dedicated to point of sale communications.
- Define unique static IP addresses for your terminals with a DHCP server.
If you are not able to use a DHCP server, define static IP addresses for your terminals on your local network.
- Make a DNS server accessible from your local network. This should be able to resolve
If you use a caching name-server, the Time to live (TTL) set by Adyen must be honored (60 seconds for Disaster Recovery).
- If your cash register applications are intermittently failing to load, lower your Maximum Transfer Unit (MTU).
- If you use intrusion detection (IDS) and prevention systems (IPS), ensure they are using up to date firmware and signatures. If these are out of date, the encrypted communications used by your integration may be disrupted.
- Connect your cash registers and terminals to an uninterrupted power supply (UPS).
Use a cellular backup connection by:
If you need more information on configuring your network, contact our POS Support Team.
Using a proxy
Adyen terminals do not support proxy connections. If your network uses a proxy, allow your terminals to bypass the proxy and connect directly to the Adyen payments platform.
To connect your Adyen terminals over Wi-Fi, your access point needs to support:
- WPA2-personal or WPA2-enterprise encryption.
To use WPA2-enterprise encryption, contact our POS Support Team.
- 2.4Ghz or 5Ghz frequencies.
If you use Verifone e285 terminals, your Access Point must support 2.4Ghz channels.
In addition, we recommend that you:
- Use a dedicated private wireless network.
- If your integration uses local communications, disable the Wireless Isolation, AP Isolation, Client Isolation, or other similar features on your access point.
Network communications flow
When you make a transaction, your integration will use the following communications flows: