Solved: Re: Send Request to External Threat Feed via Secure-X Remote?

cm22717 · ‎05-28-2022

Use Case: Our threat feeds vendor has whitelisted our company's public ips permitting us access to send http requests to their endpoints. We would like to use secure-x orchestration to initiate the request but it currently appears to be blocked (presumably because the source ip has not been whitelisted).

Question: Will deploying the secure-x remote in our internal network allow us to initiate an outbound http request from our network in order reach our vendor endpoint without being blocked?

Brian Sak · ‎05-30-2022

Today the SXo Remote will allow you to run HTTP(S) calls from the SXo cloud instance through the remote appliance. So, in theory, if your vendor is accepting these feed requests using HTTP(S) specifically from your IP range, it should work assuming you build the calls as an atomic or workflow and direct it to use Remote. The response will return back to your workflow in SXo.

View solution in original post

Brian Sak · ‎05-30-2022

Today the SXo Remote will allow you to run HTTP(S) calls from the SXo cloud instance through the remote appliance. So, in theory, if your vendor is accepting these feed requests using HTTP(S) specifically from your IP range, it should work assuming you build the calls as an atomic or workflow and direct it to use Remote. The response will return back to your workflow in SXo.