- Getting Started
- Standalone 3D Secure
- Mobile SDK
- First Integration
- Set Up Your Server
- Ready-to-Use UI
- SDK & Your Own UI
- 3D Secure 2.x
- Apple Pay
- Google Pay
- Manage Payments
- Fraud Screening
- ReD Shield
- Single Sign On
- API Reference
- Basic Payment
- Card Account
- Virtual Account
- Bank Account
- Billing Address
- Shipping Address
- Recurring Migration
- 3D Secure
- Custom Parameters
- Async Payments
- Webhook notifications
- Point of Sale
- Response Parameters
- Card On File
- Result Codes
- Brands Reference
- API Reference
Data Center Migration
As part of ACI’s commitment to world-class data center operations and infrastructure, this data center migration will allow the PAY.ON Payments Gateway to benefit from the significant investments made to infrastructure, security and processing capacity in the new environment. In addition, consolidating data centers will enable ACI to provide greater stability and control over the data center environment including procedures, updates, enhanced security monitoring and service availability.
ACI will ensure that customers are kept updated on the progress of this data center migration with regular email updates, which will include details of any changes you will be required to make to target the new environment. In addition, supplementary information is available on the PAY.ON Payments Gateway developer portal and knowledge base sites.
The effort required for this migration will depend on the method you use to connect to the PAY.ON Payments Gateway. For customers needing to whitelist the new IP range, the ACI estimate would be around an hour. If hard-coded IPs are used, these will also need to be changed, which will add to the effort required. For customers requiring the setup of new VPN connections, the effort likely to be significantly more (~20h).
The actual Data Center migration will have no impact on customers, and all changes will be fully transparent to you and your merchants. Prior to the Data Center migration as preparation, all customers will only need to whitelist the new IP range. Customers should not remove existing IPs prior to the actual Data Center migration. No further efforts are required.
The migration will follow a phased approach by environment, and will include customer testing prior to the migration of production and disaster recovery (DR) systems. No impact to services is expected as part of this migration. The dates for the migration of each environment are available below:
|LIM DR (Disaster Recovery)||6/28/17|
|LIM UAT (testing)||10/15/18|
There will be an overlap period, where the old and the new IP addresses will work. This is being done as a safety net to ensure customer traffic continues to process even if the changes are not made prior to the migration date.
In addition we will make sure that customer traffic is routed to the actual live data center in the background, so that neither you nor your merchants need to take any action. Of course it will be much better not to rely on the overlap.
The migration itself will take several hours. While the migration is taking place, ACI will ensure that customer traffic continues to process successfully, and all traffic will be routed to the new data center environment, no matter if transactions are sent to the ‘old’ or ‘new’ IPs.
As the old data center will remain active during the migration window and beyond, ACI will be able to roll back to the old environment at any time if necessary. Existing IPs should not be removed from your whitelists until you receive notification from ACI that old IPs can be removed safely. This will be around 30 days after the migration of the production environment, and is a necessary precaution to ensure you can continue to connect to the old environment in the unlikely event the migration is rolled back.
The IP ranges to whitelist for inbound and outbound traffic are as follows:
London Production: 184.108.40.206/25
Limerick Disaster Recovery: 220.127.116.11/25
Stage: 18.104.22.168/26 (Limerick)
The payment gateway has multiple workflows reporting back result on payments particular in asynchronous workflows e.g. when using webhooks or alternative payment methods.
An IP range uses a subnet to describe a list of IPs in short notation. Your network operations experts will be aware of this notation and what it means.
The full IP range covers all services and applications that we provide. However, if you do not wish to whitelist the entire range, we can work with you to provide on the applicable IP addresses for your services.
By whitelisting the entire range, you will future proof your integration in case we need to move IP addresses in future for certain applications.
While the ‘old’ IPs will continue to work for a short time after the data center migration has taken place, this is only a temporary measure. If you do not make the required changes, your organization and your merchants will not be able to process transactions once the forwarding from the old environment to the new environment is removed, as the new ACI data center IPs may end up being blocked by the firewalls of you or your merchants. For this reason, it is essential to whitelist the new IP ranges on the firewalls for your organization and merchants in preparation for the actual Data Center migration.
The majority of merchants should not be required to make any changes to frontend integrations. However, if a merchant did not follow the integration guides and targets a fixed IP address rather than a URL, then it is possible they will need to update that IP address in their integration. Merchants are unlikely to need to whitelist IPs, but if the merchant requires whitelisting for outbound traffic then they will need to whitelist our new IP range.
My organization uses DNS to connect to the ACI PAY.ON Payments Gateway. What changes do I need to make?
If you connect to us using a URL and do not whitelist outbound IP addresses, then you do not need to do anything as we will be updating our DNS records accordingly.
My organization connects to the ACI PAY.ON Payments Gateway using a VPN connection. What do I need to do?
ACI will raise a project for the migration of your VPN connection and will liaise with you directly.
ACI will handle any migration required for your white-label services.
Should you require any support or assistance with this migration, please contact HELP24 via the eSupport portal for any technical questions, or your customer success manager for any other queries.