Requirements, URLs and Permissions

Operating System Requirements

For the Windows Operating Systems supported by Web Protection, see Supported Operating Systems: Windows.

Web Protection URLs

In addition to the Dashboard and Advanced Monitoring Agent URLs, each device's Web Protection engine requires access to the following URLs over ports 80 and 443. To ensure Web Protection can communicate with our servers, we would suggest allowing these URLs in your firewall software.

Deep Packet Inspection

The network’s firewall or Virtual Private Network (VPN) may incorporate Deep Packet Inspection (DPI), an intelligent firewalling feature designed to examine all network traffic (including SSL) that passes through the firewall.

DPI examines all elements of these data packets and depending on the aggressiveness of this inspection, it may potentially interfere with the operation and performance of our Agent and associated modules by blocking of delaying communication with our systems.

To avoid DPI interfering with our systems, we would suggest adding a rule to exclude or disable DPI for our traffic (where DPI is enabled on the firewall).

These configuration settings vary from vendor to vendor and are documented in their support material.

Web Protection and Packet Inspection
Despite the duplicate inspection of each packet, the use of two packet inspectors (including Web Protection) on the same network should not significantly impact on performance if the inspectors use different drivers.

However, conflicts will occur if both inspectors attempt to use the same driver to examine the packets. Due to the potential performance issues, we would recommend disabling Web Protection on those networks where the DPI component leverages the same driver as Web Protection.

Region URL Hosted
Global api.bcti.brightcloud.com Global
Asia

Australia

echo-ap-southeast-2-block.logicnow.us Australia
echo-ap-southeast-2-svc.logicnow.us
echo-logicnow-ap-prod.s3.amazonaws.com
echo-logicnow-ap-prod.ap-southeast-2.s3.amazonaws.com
s3-ap-southeast-2.amazonaws.com/echo-logicnow-ap-prod
echo-logicnow-ap-repdb.s3.amazonaws.com
echo-logicnow-ap-repdb.ap-southeast-2.s3.amazonaws.com
s3-ap-southeast-2.amazonaws.com/echo-logicnow-ap-repdb
s3-ap-southeast-2.amazonaws.com/echo-logicnow-ap-usage
Europe

France (FR) France1

Ireland

Poland

UK

echo-eu-west-1-block.logicnow.us Ireland
echo-eu-west-1-svc.logicnow.us
echo-logicnow-eu-prod.s3.amazonaws.com
echo-logicnow-eu-prod.eu-west-1.s3.amazonaws.com
s3-eu-west-1.amazonaws.com/echo-logicnow-us-prod
echo-logicnow-eu-repdb.s3.amazonaws.com
echo-logicnow-eu-repdb.eu-west-1.s3.amazonaws.com
s3-eu-west-1.amazonaws.com/echo-logicnow-eu-repdb
s3-eu-west-1.amazonaws.com/echo-logicnow-eu-usage
Germany echo-eu-central-1-block.logicnow.us Germany
echo-eu-central-1-svc.logicnow.us
echo-logicnow-de-prod.s3.amazonaws.com
echo-logicnow-de-prod.eu-central-1.s3.amazonaws.com
s3-eu-central-1.amazonaws.com/echo-logicnow-de-prod
echo-logicnow-de-repdb.s3.amazonaws.com
echo-logicnow-de-repdb.eu-central-1.s3.amazonaws.com
s3-eu-central-1.amazonaws.com/echo-logicnow-de-repdb
s3-eu-central-1.amazonaws.com/echo-logicnow-de-usage
United States

Americas

echo-us-west-2-block.logicnow.us USA
echo-us-west-2-svc.logicnow.us
echo-logicnow-us-prod.s3.amazonaws.com
echo-logicnow-us-prod.us-west-2.s3.amazonaws.com
s3-us-west-2.amazonaws.com/echo-logicnow-us-prod
echo-logicnow-us-repdb.s3.amazonaws.com
echo-logicnow-us-repdb.us-west-2.s3.amazonaws.com
s3-us-west-2.amazonaws.com/echo-logicnow-us-repdb
s3-us-west-2.amazonaws.com/echo-logicnow-us-usage

User Permissions

Web Protection's setup and configuration is dependent on the user's privileges and their account role. As such this guide is based on those options available to users with Superuser or (non-Classic) Administrator level access, the required Web Protection permissions enabled for their account or are using the Agent Key (where Dashboard access is enabled).

Known Issues - Whitelist and Blacklist

All Dashboard users, regardless of Web Protection permissions settings, will be able to add Whitelist and Blacklist entries to the policies from the South-pane, Actions option.