This following documentation from Microsoft outlines IP’s and URL’s that should be whitelisted.
Add IP addresses and URLs to allow list – Azure DevOps | Microsoft Docs
In addition to what’s documented, whitelist the following IP’s:
52.186.101.40
168.62.52.104
The most important pieces from the linked article are :
IP addresses and range restrictions
Ensure the following IP addresses are allowed for outbound connection, so your organization works with any existing firewall or IP restrictions.
| IP V4 ranges | IP V6 ranges |
| 13.107.6.0/24 | 2620:1ec:4::/48 |
| 13.107.9.0/24 | 2620:1ec:a92::/48 |
| 13.107.42.0/24 | 2620:1ec:21::/48 |
| 13.107.43.0/24 | 2620:1ec:22::/48 |
Ensure the following IP addresses are allowed for inbound connection, so your organization works with any existing firewall or IP restrictions.
| East United States | 20.42.5.0/24 |
| East 2 United States | 20.41.6.0/23 |
Other IP addresses
40.82.190.3852.108.0.0/1452.237.19.652.238.106.116/3252.244.37.168/3252.244.203.72/3252.244.207.172/3252.244.223.198/3252.247.150.191/32
URLs to support sign in and licensing connections
management.core.windows.netlogin.microsoftonline.comlogin.live.comgo.microsoft.comgraph.microsoft.comapp.vssps.dev.azure.comapp.vssps.visualstudio.comaadcdn.msauth.netaadcdn.msftauth.net