Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
344
Views
1
Helpful
2
Replies

ESA Communicating with Cisco Umbrella

Go to solution
fabc1
Level 1
Level 1

‎10-22-2024 12:27 AM

Hi all.

Recently, we noticed our ESA is communicating with Cisco Umbrella via TCP port 443.
Based on our information, we are not using Cisco Umbrella services in our environment.
Thus, we are wondering why. Is our ESA required to communicate with Cisco Umbrella to fetch security engine updates.

Is anyone have facing the similar situation? appreciate your feedback thanksss

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Ken Stieers
VIP
VIP

‎10-22-2024 07:56 AM

Firewall rules it needs are here:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa15-0/user_guide/b_ESA_Admin_Guide_15-0/b_ESA_Admin_Guide_12_1_appendix_0101111.html

What IPs are you seeing it connect to?
If it's the 146.112.x numbers, that's Talos stuff, which is registered to OpenDNS... which is now Umbrella...

https://search.arin.net/rdap/?query=146.112.62.0

View solution in original post

2 Replies 2

Go to solution
Ken Stieers
VIP
VIP

‎10-22-2024 07:56 AM

Firewall rules it needs are here:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa15-0/user_guide/b_ESA_Admin_Guide_15-0/b_ESA_Admin_Guide_12_1_appendix_0101111.html

What IPs are you seeing it connect to?
If it's the 146.112.x numbers, that's Talos stuff, which is registered to OpenDNS... which is now Umbrella...

https://search.arin.net/rdap/?query=146.112.62.0

Go to solution
fabc1
Level 1
Level 1
In response to Ken Stieers

‎10-22-2024 07:16 PM

hi Ken,

ahh that explains. Thanks for answering this bro! hope u have a good day ahead xx

0 Helpful
Customers Also Viewed These Support Documents