openshift · opayne1 · Jul 21, 2022 · Jul 20, 2022
diff --git a/modules/configuring-firewall.adoc b/modules/configuring-firewall.adoc
@@ -46,13 +46,13 @@ There are no special configuration considerations for services running on only c
 |443, 80
 |The `https://console.redhat.com/openshift` site uses authentication from `sso.redhat.com`
 
-|`rhcos-redirector.apps.art.xq1c.p1.openshiftapps.com`
+|`rhcos.mirror.openshift.com`
 |443, 80
 |Provides {op-system-first} images
 
 |===
 +
-You can use the wildcards `\*.quay.io` and `*.openshiftapps.com` instead of `cdn0[1-3].quay.io` and `rhcos-redirector.apps.art.xq1c.p1.openshiftapps.com` in your allowlist.
+You can use the wildcards `\*.quay.io` and `*.mirror.openshift.com` instead of `cdn0[1-3].quay.io` and `rhcos.mirror.openshift.com` in your allowlist.
 When you add a site, such as `quay.io`, to your allowlist, do not add a wildcard entry, such as `*.quay.io`, to your denylist. In most cases, image registries use a content delivery network (CDN) to serve images. If a firewall blocks access, then image downloads are denied when the initial download request is redirected to a hostname such as `cdn01.quay.io`.
 
 . Allowlist any site that provides resources for a language or framework that your builds require.