As part of the previously announced
migration to Google Cloud Platform (GCP), changes in the IP addresses used by the Broadcom Web Security Service (WSS) portal and related systems will start on May 23, 2020 starting at 00:00 UTC. This maintenance will last for up to 24 hours. Impact
At the conclusion of the maintenance, the WSS Portal components will be hosted in GCP on new IP addresses. Firewall rules may need to be updated as described in the required action section below.Required Action
The required action depends on the customer’s network configuration. All IP address changes will be implemented by modifications to DNS resolution. Systems that utilize hostnames will generally be unaffected.
If connectivity from your network to WSS is regulated by firewall rules, these rules must be adjusted to allow traffic to pass from your network to the new IP addresses. Further restrictive application security or automations based on destination IP addresses should also be updated in order to avoid interruption of associated service functions (examples: API-based actions and Log Downloading).
Please review the following hostname to use-case mappings carefully to identify any potential impacts.
All functionality available via portal.threatpulse.com (administrative interface, API functionality, and log-download processes) will change to: 184.108.40.206 and 220.127.116.11.
All functionality available via cloudwebsecurity.att.com will change to: 18.104.22.168 and 22.214.171.124.
All functionality available via other partner offered portals will change to: 126.96.36.199 and 188.8.131.52.
Authentication Orchestration Service (auth.threatpulse.com), used by Auth-Connector (“BCCA”) software, will change to: 184.108.40.206 and 220.127.116.11.
On-Prem Policy Management (sgapi.threatpulse.com and sgapi.es.bluecoat.com), used by Management Center for policy upload or ProxySG for policy download, will change to: 18.104.22.168 and 22.214.171.124.
Additional service points used by roaming devices - these are contacted by some versions of end-point Agent software to assist with datacenter selection and device configuration:
ctc.threatpulse.com will change to: 126.96.36.199
mobility.threatpulse.com will change to: 188.8.131.52 and 184.108.40.206
The following hostname resolutions remain unchanged. They are provided for informational purposes, and no action is required.
Explicit-over-IPsec (“transproxy”) target proxy addresses:
ep.threatpulse.net and ep-all.threatpulse.net
SAML redirection target hostname:
Please visit these KB articles for a full list of production IP networks used by WSS:
Worldwide data center IP addresses: https://knowledge.broadcom.com/external/article?legacyId=TECH242979
Authentication / egress IP addresses: https://knowledge.broadcom.com/external/article?legacyId=TECH240889 Questions?
Please visit this KB article for additional details on the Web Security Service Migration to Google Cloud Platform: https://knowledge.broadcom.com/external/article?legacyId=tech257356
If you have further questions regarding this announcement, contact Technical Support. Support information is located at: https://support.broadcom.com/security
For real time updates and status visit and subscribe to Broadcom Service Status: https://wss.status.broadcom.comScheduleStart Date: May 23, 2020 at 00:00 UTC
End Date: May 24, 2020 at 00:00 UTC