Firewall exceptions: South Africa - all exceptions

TrendAI Vision One™ Authentication

Service	Region	Exceptions
TrendAI Vision One™	All	signin.v1.trendmicro.com tm.login.trendmicro.com iamservice.trendmicro.com Other custom IDP services Google reCAPTCHA: www.gstatic.com fonts.gstatic.com Plus one of the following: www.google.com (recommended) www.recaptcha.net

Service

Region

Exceptions

TrendAI Vision One™

All

signin.v1.trendmicro.com
tm.login.trendmicro.com
iamservice.trendmicro.com
Other custom IDP services

Google reCAPTCHA:

www.gstatic.com
fonts.gstatic.com
Plus one of the following:
- www.google.com (recommended)
- www.recaptcha.net

Endpoint Security Exceptions

Service / Agent

Exceptions

Endpoint Sensor features

release-us1.mgcp.trendmicro.com
api-za.xbc.trendmicro.com
support-connector-api.manage.trendmicro.com

supportconnectorpacks.manage.trendmicro.com

rpcollectedthings.manage.trendmicro.com

cloudendpoint-za.mgcp.trendmicro.comt

gw-za.mgcp.trendmicro.com

api-za.xbc.trendmicro.com

errs-za.mgcp.trendmicro.com

er-ws-za.xdr.trendmicro.com

api-za.xbc.trendmicro.com

cloudendpoint-za.mgcp.trendmicro.com

endpointpolicy-cdn-za.xbc.trendmicro.com

files.trendmicro.com

ipv6-iaus.trendmicro.com

ipv6-iaus.activeupdate.trendmicro.com

iaus.activeupdate.trendmicro.com

iaus.trendmicro.com

api-za.xbc.trendmicro.com

endpointpolicy-cdn-za.xbc.trendmicro.com

xlogr-afs1.xdr.trendmicro.com

Browser extension

Important

Apply these exceptions if you enable the browser extension using Endpoint Sensor or the Web Reputation module in Standard Endpoint Protection.

clients2.google.com/service/update2/crx
edge.microsoft.com/extensionwebstorebase/v1/crx

Sandbox Analysis

sandbox-threatconnect.trendmicro.com

Standard Endpoint Protection features

Important

If you enable endpoint sensor detection and response, you must also add the Endpoint Sensor features exceptions.

<Apex One console_DNS>.manage.trendmicro.com
licenseupdate.trendmicro.com
asm01-nabu-prod.aot.trendmicro.com
api-nabu.aot.trendmicro.com
osce14-p.activeupdate.trendmicro.com
tmsm35-p.activeupdate.trendmicro.com
activeupdate.trendmicro.com
osce14.icrc.trendmicro.com
osce14-0-en.url.trendmicro.com
osce140-en.fbs25.trendmicro.com
osce14-en.gfrbridge.trendmicro.com
osce14-en-census.trendmicro.com
osce14bak-en-census.trendmicro.com
osce140-en-f.trx.trendmicro.com
oscecmp140-en-f.trx.trendmicro.com
osce140-en-b.trx.trendmicro.com
mcs.trendmicro.com
www.trendmicro.com/vinfo/us/threat-encyclopedia/malware/
files.trendmicro.com
aurd-test2.activeupdate.trendmicro.com
support-connector-api.manage.trendmicro.com
support-connector-service.manage.trendmicro.com
supportconnectorpacks.manage.trendmicro.com
rpcollectedthings.manage.trendmicro.com

macOS Agents:

tmsm35.icrc.trendmicro.com/ss
tmsm3-5-cs.url.trendmicro.com
tmsm3-5-de.url.trendmicro.com
tmsm3-5-en.url.trendmicro.com
tmsm3-5-es.url.trendmicro.com
tmsm3-5-fr.url.trendmicro.com
tmsm3-5-it.url.trendmicro.com
tmsm3-5-pl.url.trendmicro.com
tmsm3-5-tc.url.trendmicro.com
tmsm35-cs.gfrbridge.trendmicro.com
tmsm35-de.gfrbridge.trendmicro.com
tmsm35-en.gfrbridge.trendmicro.com
tmsm35-es.gfrbridge.trendmicro.com
tmsm35-fr.gfrbridge.trendmicro.com
tmsm35-it.gfrbridge.trendmicro.com
tmsm35-pl.gfrbridge.trendmicro.com
tmsm35-tc.gfrbridge.trendmicro.com
tmsm350-cs.fbs25.trendmicro.com
tmsm350-de.fbs25.trendmicro.com
tmsm350-en.fbs25.trendmicro.com
tmsm350-es.fbs25.trendmicro.com
tmsm350-fr.fbs25.trendmicro.com
tmsm350-it.fbs25.trendmicro.com
tmsm350-pl.fbs25.trendmicro.com
tmsm350-tc.fbs25.trendmicro.com

Server & Workload Protection features

Important

If you enable endpoint sensor detection and response, you must also add the Endpoint Sensor features exceptions.

workload.za-1.cloudone.trendmicro.com
agents.workload.za-1.cloudone.trendmicro.com
<agents-001 through agents-010>.workload.za-1.cloudone.trendmicro.com
agent-comm.workload.za-1.cloudone.trendmicro.com
dsmim.workload.za-1.cloudone.trendmicro.com
relay.workload.za-1.cloudone.trendmicro.com
xdr-resp-ioc.workload.za-1.cloudone.trendmicro.com

Firewall EIP Block:

workload.za-1.cloudone.trendmicro.com
agents.workload.za-1.cloudone.trendmicro.com
relay.workload.za-1.cloudone.trendmicro.com
dsmim.workload.za-1.cloudone.trendmicro.com

Service	Region	Exceptions
Access Module	All	prod.ztsaagent.trendmicro.com upload.za.xdr.trendmicro.com event-za.ztsaagent.trendmicro.com
Authentication	All	agent-za-rel.ztna.trendmicro.com signin.v1.trendmicro.com tm.login.trendmicro.com iamservice.trendmicro.com Other custom IDP services Google reCAPTCHA: www.gstatic.com fonts.gstatic.com Plus one of the following: www.google.com (recommended) www.recaptcha.net
Internet Access Service	All	auth.ztsa-iag.trendmicro.com pac.za.ztsa-iag.trendmicro.com auth.za.ztsa-iag.trendmicro.com
Internet Access Cloud Gateway	All	proxy.ztsa-iag.trendmicro.com proxy.za.ztsa-iag.trendmicro.com d9vbqsel5dvrs.cloudfront.net
Internet Access On-Premises Gateway with Smart Protection Network: Off	All	xlogr-afs1.xdr.trendmicro.com api.af-south-1.za.ddcloud.trendmicro.com iwsh30-en.url.trendmicro.com api-eu-central-1.crs.trendmicro.com iwsh300-en.census.trendmicro.com iwsaas30-en-f.trx.trendmicro.com iwsh30-p.activeupdate.trendmicro.com d9vbqsel5dvrs.cloudfront.net
Internet Access On-Premises Gateway with Smart Protection Network: On	All	xlogr-afs1.xdr.trendmicro.com api.af-south-1.za.ddcloud.trendmicro.com ctapi.trendmicro.com iwsh30-p.activeupdate.trendmicro.com d9vbqsel5dvrs.cloudfront.net
Private Access Connector	All	agent-za-rel.ztna.trendmicro.com download-za-rel.ztna.trendmicro.com saseztnaprodzasagen2.blob.core.windows.net saseztnaprodzasa.blob.core.windows.net sase-ztna-prod-za-iothub-cntevt.azure-devices.net ztnaextacr.azurecr.io 0.pool.ntp.org 1.pool.ntp.org 2.pool.ntp.org 3.pool.ntp.org
Private Access Connector (if not using the Trend Cloud Proxy service)	Australia	20.5.69.128/28
	Europe	20.4.51.32/28
	India	20.219.254.160/28
	Israel	20.217.194.0/28
	Japan	52.140.246.128/28
	Singapore	52.187.118.64/28
	United States	20.7.52.240/28
	Brazil	4.228.193.144/28
	MEA	20.74.229.224/28
	United Kingdom	20.0.229.192/28
	Canada	40.82.166.0/28
	South Africa	4.168.215.0/28

Service Gateway Exceptions

Service	Region	Exceptions
Firmware	All	sgi-thingsboard.za.xdr.trendmicro.com sgi-thingsboard-api.za.xdr.trendmicro.com api.za.xdr.trendmicro.com upload.za.xdr.trendmicro.com
Smart Protection Network proxy: On	All	ctapi.trendmicro.com
Smart Protection Network proxy: Off	All	sg-tmsps10-en.url.trendmicro.com sg-tmsps10-en-wis.trendmicro.com sg-tmsps100-en-census.trendmicro.com sg-tmsps100-en-domaincensus.trendmicro.com grid-global.trendmicro.com rest.mars.trendmicro.com sg-tmsps10-en.gfrbridge.trendmicro.com sg-tmsps10-p.activeupdate.trendmicro.com
Local ActiveUpdate	All	Refer to ActiveUpdate session of each product/agent

Forensics and Analysis

Service / Agent	Region	Exceptions
IR Tool Download for Agent	South Africa	resources.prod-af-south-1.irs.trendmicro.com

Network Inventory

Service	Region	Exceptions
Virtual Network Sensor	All	xns-p.activeupdate.trendmicro.com gp.fbs.trendmicro.com xlogr-ase2.xdr.trendmicro.com api.au.xdr.trendmicro.com licenseupdate.trendmicro.com For customers with "Send to Sandbox" enabled, add the following as well: ctapi.trendmicro.com api.ddcloud.trendmicro.com api.au.ddcloud.trendmicro.com

Service

Region

Exceptions

Virtual Network Sensor

All

xns-p.activeupdate.trendmicro.com
gp.fbs.trendmicro.com
xlogr-ase2.xdr.trendmicro.com
api.au.xdr.trendmicro.com
licenseupdate.trendmicro.com

For customers with "Send to Sandbox" enabled, add the following as well:

ctapi.trendmicro.com
api.ddcloud.trendmicro.com
api.au.ddcloud.trendmicro.com

Mobile Security for Android

Server	Region	Port	Exceptions
TrendMicro Mobile Security Backend	All	80 443	.mobile.trendmicro.com .xdr.trendmicro.com https://portal.mobile.trendmicro.com/ui/ami/mobile/h5/worryfree/openAndroidApp.html?productCode=wfbss&authCode=HWQj7aab&userPrincipalName= rest.mars.trendmicro.com rest-g.mars.trendmicro.com rest-g-au.mars.trendmicro.com mint.mars.trendmicro.com portal-sg.mobile.trendmicro.com .ztna.trendmicro.com .ztsa-iag.trendmicro.com logs.trendmicro.com spnsupport.trendmicro.com mxdr1-0.url.trendmicro.com mxdr1-0-im.url.trendmicro.com http://.trendmicro.com https://.trendmicro.com
GooglePlay / Firebase Server	All	443 5228 5229 5230	.google.com .firebase.com .googleapis.com .firebaseio.com
Log feedback	All	443	https://cognito-identity.us-west-2.amazonaws.com

Mobile Security for iOS

Server	Region	Port	Exceptions
TrendMicro Mobile Security Backend	All	22 80 443	.trendmicro.com .mobile.trendmicro.com .xdr.trendmicro.com rest.mars.trendmicro.com rest-g.mars.trendmicro.com rest-g-au.mars.trendmicro.com mint.mars.trendmicro.com portal-sg.mobile.trendmicro.com .ztna.trendmicro.com .ztsa-iag.trendmicro.com logs.trendmicro.com spnsupport.trendmicro.com mxdr1-0.url.trendmicro.com mxdr1-0-im.url.trendmicro.com mxdr1-0-ios.url.trendmicro.com http://.trendmicro.com https://*.trendmicro.com
Apple Server	All	443 80 5223 2197 123	.apple.com .mzstatic.com *.icloud.com
Firebase Server	All	443 5228 5229 5230	.google.com .firebase.com .googleapis.com .firebaseio.com
Log feedback	All	443	https://cognito-identity.us-west-2.amazonaws.com

TrendAI Vision One™ Agentless Vulnerability & Threat Detection Exceptions

Service	Region	Exceptions
Agentless Vulnerability and Threat Detection	South Africa	googlecode.l.googleusercontent.com sentry.za-1.cloudone.trendmicro.com xlografs1.xdr.trendmicro.com c1fss1.icrc.trendmicro.com

Security Awareness Exceptions

Service	Region	Exceptions
Security awareness	All	cdn.tiny.cloud

Cloud Risk Management

Service	Region	Exceptions
Real-Time Posture Monitoring	Australia	rtpm.apm-au.xdr.trendmicro.com a2sx2v445s9fxl-ats.iot.ap-southeast-2.amazonaws.com

Executive Dashboard

Service	Region	Exceptions
XDR	All	download.xdr.trendmicro.com