The following list contains the addresses and ports that should be put on Allow list for access through the firewall:
- ddi55-p.activeupdate.trendmicro.com:443
- grid-global.trendmicro.com:443
- ddaaas.trendmicro.com:443
- ddi550-en-domaincensus.trendmicro.com:443
- ddi550-en-census.trendmicro.com:443
- licenseupdate.trendmicro.com:443
- rest.mars.trendmicro.com:443
- ddi55-en-f.trx.trendmicro.com:443
- intelliconnect.trendmicro.com:443
- ddi55-retroscan.trendmicro.com:443
- ddi550-en.fbs25.trendmicro.com:80
- ddi55-threatconnect.trendmicro.com:443
- ddi5-5-en-wis.trendmicro.com:443
- ddi5-5-en.url.trendmicro.com:443
- ddi5-5-en-t0.url.trendmicro.com:443
If you are using the vDDI and have enabled the Deep Discovery Analyzer as a Service Add-on (A hosted service that analyze possible threats), the following addresses should also be put on Allow list:
- api.ddcloud.trendmicro.com:443
- api.us-east-1.en.ddcloud.trendmicro.com:443
- api.eu-central-1.eu.ddcloud.trendmicro.com:443
If DDI integrate with Deep Discovery Director-Network Analytics as a Service, the following addresses should also be put on Allow list:
- api.nacloud.trendmicro.com:443
- api.us.nacloud.trendmicro.com:443
- api.eu.nacloud.trendmicro.com:443
It is highly recommended to test communications with Trend Micro backend services via the Network Service Diagnostics feature.
To run the Network Service Diagnostics, go to https://DDI_IP/html/troubleshooting.htm then click Network Service Diagnostics > Test.
For more service addresses and ports used by DDI 5.5 EN, refer to Appendix D of the offical Administration Guide.