Static Proxy Servers and IP Addresses Used in Trend Micro Web Security

The following table explains the four types of proxy servers that TMWS provides.

Proxy Server Type

Proxy Address (FQDN)

Description

Global

proxy.iws-hybrid.trendmicro.com

Default proxy server

When configured, the system will automatically forward user requests to a lowest-latency regional proxy server.

Global (only for uniquely assigned port)

proxy-md.iws-hybrid.trendmicro.com

Default proxy server for the dedicated port assigned by TMWS in the case that you add a domain name under Directroy Services but it is already in use by another organization

When configured, the system will automatically forward user requests to a lowest-latency regional proxy server.

Regional

proxyst-<region>.iws-hybrid.trendmicro.com

<region> is a variable for regions, which includes:

  • uw2 for US West (Oregon)

  • as2 for Australia (Sydney)

  • ue for US East (N. Virginia)

  • ew for Ireland (Ireland)

  • ew2 for UK (London)

  • se for Brazil (San Paulo)

  • ec for Germany (Frankfurt)

  • as1 for India (Mumbai)

  • an for Japan (Tokyo)

  • as for Singapore

Regional proxy server that serves a specific region only

When configured, the system will forward user requests to the specified regional proxy server.

Regional (only for uniquely assigned port)

proxyst-<region>-md.iws-hybrid.trendmicro.com

<region> is a variable for regions. For more information, see "Regional proxy".

Regional proxy server for the dedicated port assigned by TMWS in the case that you add a domain name under Directroy Services but it is already in use by another organization

When configured, the system will forward user requests to the specified regional proxy server.

The following table explains the two types of PAC servers that TMWS provides.

PAC Server Type

PAC Address (FQDN)

Description

Global

pacst.iws-hybrid.trendmicro.com

Default static PAC server

When configured, the system will automatically forward user requests to a lowest-latency regional PAC server.

The PAC server shares the same IP address range that TMWS uses for inbound proxy, as shown in the table below.

Regional

pacst-<region>.iws-hybrid.trendmicro.com

<region> is a variable for regions, which includes:

  • uw2 for US West (Oregon)

  • as2 for Australia (Sydney)

  • ue for US East (N. Virginia)

  • ew for Ireland (Ireland)

  • ew2 for UK (London)

  • se for Brazil (San Paulo)

  • ec for Germany (Frankfurt)

  • as1 for India (Mumbai)

  • an for Japan (Tokyo)

  • as for Singapore

Note:

Only the US West, Germany, and Japan regions have real PAC servers, while the PAC address of the other regions will be routed to the US West region.

Regional proxy server that serves a specific region only

When configured, the system will forward user requests to the specified regional PAC server.

The PAC server shares the same IP address range that TMWS uses for inbound proxy, as shown in the table below.

On the cloud, TMWS receives HTTP requests from user clients (inbound) and forwards them to the destination websites (outbound) using different IP addresses. The IP addresses for inbound transmission are static, while those for outbound transmission are dynamically allocated.

The following table explains the IP addresses that TMWS uses for proxy (inbound) and for Direct Authentication.

Purpose

IP Addresses

Descriptions

For proxy (inbound)

52.29.191.208 - 52.29.191.223

54.171.190.128 - 54.171.190.143

52.56.127.240 - 52.56.127.247

52.35.63.176 - 52.35.63.191

52.90.127.240 - 52.90.127.255

52.68.255.224 - 52.68.255.255

52.65.255.240 - 52.65.255.255

54.233.255.240 - 54.233.255.255

13.126.23.128 - 13.126.23.135

18.141.66.240 - 18.141.66.247

The TMWS cloud proxy uses the IP address within these IP ranges to receive HTTP requests sent from a user's browser in your organization.

For Direct Authentication

54.93.44.160

54.93.40.172

50.112.157.207

54.201.83.195

54.76.190.176

54.72.187.231

52.56.76.254

52.56.96.164

52.4.56.161

52.0.26.116

54.199.160.153

54.250.181.139

54.252.137.220

54.79.89.127

54.232.197.232

54.207.109.120

35.154.252.243

35.154.70.163

18.136.191.209

52.220.233.54

If your organization uses the Direct authentication method, TMWS both on the cloud and on the premises uses one of these IP addresses to connect to your Active Directory servers for user authentication.