Customers deploying Umbrella's Secure Web Gateway (SWG) are recommended to whitelist SWG's IP space to ensure traffic is allowed through their perimeter firewalls. This article outlines the IPs to whitelist.
This article applies to SWG deployments with PAC file or AnyConnect Client with SWG module
Cisco Umbrella is an elastic cloud service, and its IP space is dynamic and constantly changing. Customers deploying the Umbrella SWG product are recommended to whitelist the following CIDRs on their perimeter firewalls to ensure they can connect to the Umbrella SWG service:
- Protocol = TCP
- Ports = outbound 80 and 443