06-16-2022 07:08 AM
My Cisco ISE 3.1 patch 3 is attempting to communicate with these IP addresses over the Internet but my Internal firewalls is blocking it. We only allow the ISE appliance to communicate with tools.cisco.com and tools2.cisco.com over https for Smart Licensing.
These appears to be AWS Internet IP addresses:
$ dig @4.2.2.2 -x 35.162.38.159 +short
ec2-35-162-38-159.us-west-2.compute.amazonaws.com.
$ dig @4.2.2.2 -x 35.165.225.238 +short
ec2-35-165-225-238.us-west-2.compute.amazonaws.com.
$ dig @4.2.2.2 -x 52.26.193.222 +short
ec2-52-26-193-222.us-west-2.compute.amazonaws.com.
What are those IP addresses for? Anyone?
06-16-2022 07:50 AM
My guess would be for interactive help:
*.walkme.com *.walkmeusercontent.com
06-16-2022 01:09 PM
I found the issue. The stupid ISE is attempting to communicate with cisco connectDNA:
dig @4.2.2.2 www.ciscoconnectdna.com +short
www.tesseractcloud.com.
maglev.production-dnaservices-2.tesseractcloud.com.
35.162.38.159
52.26.193.222
35.165.225.238
06-16-2022 01:52 PM
If you find an option to disable this, please let us know.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide