Domain for Firewall Rules

Could I get the domain names of where channels opens egress to use in my firewall appliance?

To be clear, the firewall logs a bunch IP address for 80 and 443 and ones I checked go to AWS but I can't put every possible AWS IP address in the firewall and instead prefer to enter a domain name.

Hope my request makes sense. For example, if I allowed "" then it would allow all of the IP addresses from dig

The hostname is

I understand that's some but dig only turns up 2 IP addresses. What about all of these IP addresses that channels DVR uses for egress on 80 and 443?

Looks like they spin up a lot of AWS nodes.

Those might be Gracenote's IPs. Those IP addresses may be the source of the guide data and associated images.

I said in the original post that many were AWS which is why I need the domain name. I gave the example of which maps to these IP addresses:
So, I need a similar domain name for my firewall which will allow channels dvr out to any of the IP addresses associated with the domain name(s) of which is one of them but not all of them.

Ah, thanks. That may be part of what I'm looking for (never heard of gracenote but I'd have no reason to) but dig turns up a bunch of aws servers.
(Why can't I just get the domain names channels uses like I asked?)

Because they may not control all of the domain names. For guide data, they request it from a single API (that likely resolves to multiple IPs because of CDNs and load balancing), and then the guide responses include the URIs to use to get the images. Channels has no idea what IPs/domains that the guide data may respond with, as it's not under their control.

1 Like

The hostname used for guide data is

It looks like you're using TVE too, in which case there are dozens of other domains used by each of the networks and cable providers and we are not able to provide an exhaustive list of them all.

I understand about the TVE but I can easily get the domains from the few channels I watch from a log scan.

I want to tell everybody that I do not have any concerns about the channels egress and I trust their policies. But, I prefer to know where any of my apps are going on their own and allow it from the firewall.

We also use and