Allow Resource Connector Traffic to Secure Access
Your firewall must allow your resource connectors to reach the destinations on this page.
All connections are outbound from your network.
Region-Specific Destinations
Allow traffic to the applicable regional destination FQDNs or addresses, on these ports and protocols:
- UDP/443 (DTLS)
- TCP/443 (TLS)
| Region | FQDN | Resolves To |
|---|---|---|
| US (Virginia) | prod.use1.acgw.sse.cisco.com | 151.186.199.0/24 |
| US (Pacific Northwest) | prod.usw2.acgw.sse.cisco.com | 151.186.192.0/24 |
| Canada (Central) | prod.cac1.acgw.sse.cisco.com | 151.186.206.0/24 |
| Europe (Germany) | prod.euc1.acgw.sse.cisco.com | 151.186.197.0/24 |
| Switzerland (Zurich) | prod.euc2.acgw.sse.cisco.com | 151.186.207.0/24 |
| United Kingdom | prod.euw2.acgw.sse.cisco.com | 151.186.198.0/24 |
| Asia Pacific (Jakarta) | prod.apse3.acgw.sse.cisco.com | 151.186.205.0/24 |
| Asia Pacific (Tokyo) | prod.apne1.acgw.sse.cisco.com | 151.186.193.0/24 |
| Asia Pacific (Singapore) | prod.apse2.acgw.sse.cisco.com | 151.186.195.0/24 |
| Australia (Sydney) | prod.aps1.acgw.sse.cisco.com | 151.186.196.0/24 |
| India (West) | prod.apse1.acgw.sse.cisco.com | 151.186.194.0/24 |
| Israel (Tel Aviv) | prod.ilc1.acgw.sse.cisco.com | 151.186.203.0/24 |
Destinations For All Regions
Allow outbound traffic to all of the following destinations:
| FQDN | Port and Protocol |
|---|---|
| us.repo.acgw.sse.cisco.com eu.repo.acgw.sse.cisco.com ap.repo.acgw.sse.cisco.com | TCP/443 |
| us.controller.acgw.sse.cisco.com eu.controller.acgw.sse.cisco.com ap.controller.acgw.sse.cisco.com | TCP/443 |
| api.sse.cisco.com | TCP/443 |
| prod.acme.sse.cisco.com | TCP/443 |
| ssepki.cryptosvcs.cisco.com | TCP/80 |
Requirements and Prerequisites for Resource Connectors and Connector Groups < Allow Resource Connector Traffic to Secure Access > Add Resource Connector Groups
Updated 15 days ago