Hi,

I have gone through the link on-premises gateway configuration and the architecture above.

But I m still not clear on configurations necessary and here are my questions:

1. Gateway communicates with Azure Service Bus on outbound ports TCP 443 (default), 5671, 5672, 9350 thru 9354.

Is it sufficient to open outbound ports for the domain names specified?

*.download.microsoft.com, *.powerbi.com, *.analysis.windows.net, *.login.windows.net, *.servicebus.windows.net, *.frontend.clouddatahub.net, *.core.windows.net, login.microsoftonline.com, *.msftncsi.com, *.microsoftonline-p.com

2. It is mentioned to white list Microsoft Azure Data Center IP List and that these addresses are updated weekly.

a) Depending on the region where power BI data is located, should I open outbound ports for each of IP ranges?

b) Which protocol and port number is used for this communication b/w Gateway and Azure Service Bus?

c) If IP addresses change weekly, isn't it required to involve n/w team on a weekly basis? Is there any work-around?

3. For defining the firewall rules, the n/w team is insisting on specifying "What destination exactly would you like to reach"

Firewall is located b/w Server where Power BI gateway is installed and the Azure Servive Bus/ Cloud. Your inputs on any of the questions asked would be very much appreciated as we have been stuck with the issue since several days.

Thank you.