Recently I wrote about allowing devices to talk to Apple. One of the recommendations in that post was to allow traffic from your network out to Apple’s address range, 220.127.116.11/8
At the moment I’m trialling a Chromebook enrolled into our Google Apps domain. The setup of the Chrombook needed to download some updates from Google so that I could complete the enrolment. The updates failed inside our network in its existing configuration, so I looked around for documentation from Google on where their various services might be hosted.
Unlike Apple, Google’s services seem to be run from a number of different subnets. On the plus side, Google do publish an excellent guide on network configurations for deployment of their services, whether this be just Google Apps accessed from any device, or a full-scale Chromebook deploment
The full document of Google’s Networking Best Practices for Large Deployments is available here.
The relevant piece of information I was looking for was their IPv4 address ranges, which they give as 18.104.22.168/19, 22.214.171.124/19, 126.96.36.199/20, 188.8.131.52/18, 184.108.40.206/17, 220.127.116.11/20, 18.104.22.168/16, 22.214.171.124/20, 126.96.36.199/20 and 188.8.131.52/16.
The Best Practices document is packed with useful information about managing proxy servers, PAC files ports used by various Google services and sizing of your infrastructure to give users the best experience possible.