Notification
Risk classification
HIPER (High Impact and/or Pervasive)
Subcategories for Informational notifications
Download SW & Drivers
Affected Domain
IBM Software Electronic Download Servers Connectivity Information
Abstract
Secure File Transfer Service – Important Notice to External Service Clients
As part of IBM CIO’s ongoing commitment to enhancing platform security, streamlining operations, and optimizing infrastructure resources, we wish to inform you of the upcoming migration of the Secure File Transfer (SFT) service infrastructure, scheduled for completion by the end of 2025.
About the Secure File Transfer Service
- The Secure File Transfer (SFT) service provides a secure environment for exchanging files between IBM and external parties such as customers, suppliers, and business partners.
- It functions as a secure “dropbox,” allowing users to upload files for later download by authorized recipients.
The service supports secure file exchange using HTTPS (SSL/TLS), FTPS (FTP over TLS), and SFTP/SCP (SSH-based) protocols, ensuring confidentiality and integrity of transmitted data.
Description
Migration Overview
This infrastructure migration will involve:
- Consolidating infrastructure from dual-hosted locations (EMEA and U.S.) into a single U.S.-based instance.
After completion, the U.S. site will be the only active instance of the Secure File Transfer service.
What This Means for You
The Dublin server (transfer.mul.ie.ibm.com) will be permanently decommissioned.
The following hostname will remain active and must be used going forward:
The following hostnames will be sunset and discontinued:
New IP Address for Firewall Whitelisting
As part of this migration, a new IP address has been assigned to the U.S. hostname.
Clients that are unable to use hostnames must add (not replace) the new IP address to their firewall whitelists. For reference, the current IP in use is 170.225.126.22.
| Purpose | Hostname | New IP Address |
| External clients | transfer.boulder.ibm.com | 170.225.126.15 |
Important:
While this IP is now available, the future Secure File Transfer server is not yet fully provisioned.
Testing or connectivity validation against this IP is not yet authorized until further notice from IBM.
Network Ports and Protocols
To ensure continued connectivity after migration, please review your firewall configurations and ensure the following TCP ports are open to the Boulder endpoint:
| Protocol | Purpose | TCP Ports |
| HTTPS | Secure web-based transfers | 443 |
| FTPS | Secure FTP over TLS | 20, 21, and 65024–65535 (for Passive Mode FTP) |
| SFTP | Secure file transfer over SSH | 22 |
Recommended Action
Client Actions Required
To prepare for the migration:
- Add the new IP address to your firewall whitelists (do not remove existing ones).
- Verify that your network allows outbound access on the ports required by the protocols you intend to use (HTTPS – 443, FTPS – 20/21/65024–65535, SFTP – 22).
- Update any transfer scripts and automation jobs to point exclusively to transfer.boulder.ibm.com.
- If your environment uses a proxy between the source system and the Secure File Transfer infrastructure, ensure that the proxy configuration is also updated to support the new IP address.
Timeline
- Migration Completion: by end of 2025
- Exact Cutover Date: under review and will be announced in a future communication
- Dublin Server Retirement: effective upon completion of the migration
IBM is committed to ensuring this transition is as seamless as possible. Additional updates and detailed implementation guidance will follow.
Reference and Support
This document should be used as a reference for firewall configuration updates related to the Secure File Transfer service migration.
If you have any questions or require further clarification, please contact your IBM representative.
Was this topic helpful?
Document Information
Modified date:
02 December 2025
UID
ibm17249518