For all Cloud One Workload Security accounts created on or before 2020-11-23, we are committed to maintaining a list of static IPs to allow egress traffic to be restricted based on IP or DNS, as documented in Port numbers, URLs, and IP addresses.
To add additional capacity to Cloud One Workload Security, we will be adding the following new Deep Security Relay IP addresses on 2021-03-01:
Please refer to Port numbers, URLs, and IP addresses for the complete list of addresses that are required by the Deep Security Agent when used with Cloud One Workload Security.
If both of these conditions apply to you:
- Your Cloud One Workload Security account was created on or before 2020-11-23 and
- You apply network traffic restrictions for egress traffic originating from Deep Security Agents to the Deep Security Relays
Then prior to 2021-03-01, please update your network traffic policy to include the new list of IPs as documented in Port numbers, URLs, and IP addresses to ensure that the agents can continue to connect to the relays as required.
If connectivity is blocked to the complete list of relay IP addresses, it may prevent Deep Security Agent from downloading necessary security or product updates, which may impact the protection provided by the agent.