Internet Resources Accessed by Managed Devices
Managed devices connect to the internet on ports 443/tcp (HTTPS) and 80/tcp (HTTP). You can configure a proxy server, except for NTP. For some features, your location determines which resources you access. In addition to managed devices accessing the internet, your browser may contact Amplitude (amplitude.com) web analytics servers to provide non-personally-identifiable usage data to Cisco.
|
Feature |
Reason |
High Availability/Clustering |
Resource |
|---|---|---|---|
|
CA certificate bundles |
Queries for new CA certificates at a daily system-defined time. The local CA bundle contains certificates to access several Cisco services. |
Each unit downloads its own certificates. |
cisco.com/security/pki |
|
Malware defense |
Submit files for dynamic analysis. |
All units submit files. |
fmc.api.threatgrid.com fmc.api.threatgrid.eu |
|
Cisco Support Diagnostics |
Accepts authorized requests and transmits usage information and statistics. |
All units communicate. |
api-sse.cisco.com:8989 |
|
Time synchronization |
Synchronize time in your deployment. Not supported with a proxy server. |
All units communicate with the NTP server. |
User configured. |
|
Upgrades |
Download upgrades directly to managed devices. Tests the connection once a week. |
Upgrade packages do not sync. Each unit must get its own from the internet, the management center, or an internal server. |
cdo-ftd-images.s3-us-west-2.amazonaws.com |