Topics on this page
Port numbers, URLs, and IP addresses
Workload Security default port numbers, URLs, IP addresses, and protocols are listed in the sections below. If a port, URL or IP address is configurable, a link is provided to the relevant configuration page.
If your network uses a proxy, you can configure Workload Security to connect to it instead of directly to the components listed on this page. For details, see Configure proxies.
In addition to the ports on this page, Workload Security uses ephemeral ports when opening a socket (source port). Under rare circumstances these may be blocked, causing connectivity issues. For details, see Activation Failed - Blocked port.
Workload Security port numbers
The following diagram shows the default ports in a Workload Security system. For details, see the table below the diagram.
In the table below:
- 'Mandatory ports' refer to ports that must be opened to ensure the proper functioning of the Workload Security system.
- 'Optional ports' refer to ports that may be opened depending on the feature or component you want to deploy.
- 'Port' is used in place of 'port number' for brevity.
| Port type | Default port number and protocol |
|---|---|
| Agent listening (inbound) port |
Optional port:
|
| Agent outbound ports |
Mandatory ports:
Optional ports:
|
| Relay listening (inbound) ports |
Relays are typically not required. For details, see Deploy a relay. If you do decide to deploy relays, then make sure they can listen on the following ports.
Port 4123 should not be listening to connections from other computers, and you don't need to configure it in network firewall policies. But if you have firewall software (such as Windows Firewall or iptables) on the relay itself, verify that it does not block this connection to itself. Also verify that other applications do not use the same port (a port conflict). |
| Relay outbound ports |
Relays are typically not required. For details, see Deploy a relay. If you do decide to deploy relays, then make sure they can connect outbound to the following ports.
|
|
Ports of components receiving traffic from Workload Security |
Optional ports:
|
|
These ports are only required if you've set up a data center gateway.
|
|
|
These ports are only required if you've set up a data center gateway.
|
Workload Security URLs
If you need to restrict the URLs that are allowed in your environment, read this section.
You'll need to make sure your firewall allows traffic from the 'Source' to the 'Destinations' listed in the table below. For each FQDN, make sure you allow access to its associated HTTPS URL. For example, for the FQDN files.trendmicro.com, allow access to https://files.trendmicro.com:443 and http://files.trendmicro.com:80.
| Source | Destination server or service name | Destination fully-qualified domain name (FQDN) | Supported protocols |
|---|---|---|---|
| Agent, relay | Workload Security heartbeat and activation servers |
And the FQDN for your Trend Micro Cloud One region:
If you restrict outbound communication and you are on version 20.0.0-1540 or earlier of the agent or your firewall does not allow FQDNs beginning with |
HTTPS |
| Workload Security servers | Agent prior to version 20.0.0-1559 |
These are only required if you have agents older than version 20.0.0-1559.
And the FQDN for your Trend Micro Cloud One region:
If your firewall does not allow FQDNs beginning with |
HTTPS |
| API clients | Deep Security APIs |
And the FQDN for your Trend Micro Cloud One region:
|
HTTPS |
| Agent, relay |
Download Center or web server Hosts software. |
|
HTTPS HTTP |
| Agent |
Smart Protection Network - Used for behavior monitoring, and predictive machine learning. |
|
HTTPS HTTP |
| Agent |
Smart Protection Network - Used for behavior monitoring, predictive machine learning, and process memory scans. |
|
HTTPS HTTP |
| Agent | Smart Protection Network - Smart Feedback |
20.0 and later agents connect to:
12.0 and later agents connect to:
11.0 and later agents connect to:
10.0 agents connect to:
|
HTTPS HTTP |
| Agent | Smart Protection Network - Smart Scan Service |
|
HTTPS HTTP |
| Agent |
Smart Protection Network - |
|
HTTPS HTTP |
| Agent | Smart Protection Network - Web Reputation Service |
|
HTTPS HTTP |
| Agent, relay | Trend Micro Update Server (also called Active Update) and Download Center |
|
HTTPS HTTP |
| Data Center Gateway | Workload Security - Gateway control channel |
The FQDN for your Trend Micro Cloud One region:
|
HTTPS |
| Data Center Gateway | Workload Security - Gateway data channel |
The FQDN for your Trend Micro Cloud One region:
|
HTTPS |
If your firewall does not allow *.workload.<region>.cloudone.trendmicro.com, allow access to the FQDNs below individually
FQDNs for your Trend Micro Cloud One region:
- US:
- workload.us-1.cloudone.trendmicro.com
- gateway.workload.us-1.cloudone.trendmicro.com
- gateway-control.workload.us-1.cloudone.trendmicro.com
- xdr-resp-ioc.workload.us-1.cloudone.trendmicro.com
- dsmim.workload.us-1.cloudone.trendmicro.com
- relay.workload.us-1.cloudone.trendmicro.com
- agent-comm.workload.us-1.cloudone.trendmicro.com
- agents-001.workload.us-1.cloudone.trendmicro.com
- agents-002.workload.us-1.cloudone.trendmicro.com
- agents-003.workload.us-1.cloudone.trendmicro.com
- agents-004.workload.us-1.cloudone.trendmicro.com
- agents-005.workload.us-1.cloudone.trendmicro.com
- agents-006.workload.us-1.cloudone.trendmicro.com
- agents-007.workload.us-1.cloudone.trendmicro.com
- agents-008.workload.us-1.cloudone.trendmicro.com
- agents-009.workload.us-1.cloudone.trendmicro.com
- agents-010.workload.us-1.cloudone.trendmicro.com
- agents-011.workload.us-1.cloudone.trendmicro.com
- agents-012.workload.us-1.cloudone.trendmicro.com
- agents-013.workload.us-1.cloudone.trendmicro.com
- agents-014.workload.us-1.cloudone.trendmicro.com
- agents-015.workload.us-1.cloudone.trendmicro.com
- agents-016.workload.us-1.cloudone.trendmicro.com
- agents-017.workload.us-1.cloudone.trendmicro.com
- agents-018.workload.us-1.cloudone.trendmicro.com
- agents-019.workload.us-1.cloudone.trendmicro.com
- agents-020.workload.us-1.cloudone.trendmicro.com
- agents-021.workload.us-1.cloudone.trendmicro.com
- agents-022.workload.us-1.cloudone.trendmicro.com
- agents-023.workload.us-1.cloudone.trendmicro.com
- agents-024.workload.us-1.cloudone.trendmicro.com
- agents-025.workload.us-1.cloudone.trendmicro.com
- agents-026.workload.us-1.cloudone.trendmicro.com
- agents-027.workload.us-1.cloudone.trendmicro.com
- agents-028.workload.us-1.cloudone.trendmicro.com
- agents-029.workload.us-1.cloudone.trendmicro.com
- agents-030.workload.us-1.cloudone.trendmicro.com
- agents-031.workload.us-1.cloudone.trendmicro.com
- agents-032.workload.us-1.cloudone.trendmicro.com
- agents-033.workload.us-1.cloudone.trendmicro.com
- agents-034.workload.us-1.cloudone.trendmicro.com
- agents-035.workload.us-1.cloudone.trendmicro.com
- agents-036.workload.us-1.cloudone.trendmicro.com
- agents-037.workload.us-1.cloudone.trendmicro.com
- agents-038.workload.us-1.cloudone.trendmicro.com
- agents-039.workload.us-1.cloudone.trendmicro.com
- agents-040.workload.us-1.cloudone.trendmicro.com
- agents-041.workload.us-1.cloudone.trendmicro.com
- agents-042.workload.us-1.cloudone.trendmicro.com
- agents-043.workload.us-1.cloudone.trendmicro.com
- agents-044.workload.us-1.cloudone.trendmicro.com
- agents-045.workload.us-1.cloudone.trendmicro.com
- agents-046.workload.us-1.cloudone.trendmicro.com
- agents-047.workload.us-1.cloudone.trendmicro.com
- agents-048.workload.us-1.cloudone.trendmicro.com
- agents-049.workload.us-1.cloudone.trendmicro.com
- agents-050.workload.us-1.cloudone.trendmicro.com
- agents-051.workload.us-1.cloudone.trendmicro.com
- agents-052.workload.us-1.cloudone.trendmicro.com
- agents-053.workload.us-1.cloudone.trendmicro.com
- agents-054.workload.us-1.cloudone.trendmicro.com
- agents-055.workload.us-1.cloudone.trendmicro.com
- agents-056.workload.us-1.cloudone.trendmicro.com
- agents-057.workload.us-1.cloudone.trendmicro.com
- agents-058.workload.us-1.cloudone.trendmicro.com
- agents-059.workload.us-1.cloudone.trendmicro.com
- agents-060.workload.us-1.cloudone.trendmicro.com
- agents-061.workload.us-1.cloudone.trendmicro.com
- agents-062.workload.us-1.cloudone.trendmicro.com
- agents-063.workload.us-1.cloudone.trendmicro.com
- agents-064.workload.us-1.cloudone.trendmicro.com
- agents-065.workload.us-1.cloudone.trendmicro.com
- agents-066.workload.us-1.cloudone.trendmicro.com
- agents-067.workload.us-1.cloudone.trendmicro.com
- agents-068.workload.us-1.cloudone.trendmicro.com
- agents-069.workload.us-1.cloudone.trendmicro.com
- agents-070.workload.us-1.cloudone.trendmicro.com
- agents-071.workload.us-1.cloudone.trendmicro.com
- agents-072.workload.us-1.cloudone.trendmicro.com
- agents-073.workload.us-1.cloudone.trendmicro.com
- agents-074.workload.us-1.cloudone.trendmicro.com
- agents-075.workload.us-1.cloudone.trendmicro.com
- agents-076.workload.us-1.cloudone.trendmicro.com
- agents-077.workload.us-1.cloudone.trendmicro.com
- agents-078.workload.us-1.cloudone.trendmicro.com
- agents-079.workload.us-1.cloudone.trendmicro.com
- agents-080.workload.us-1.cloudone.trendmicro.com
- agents-081.workload.us-1.cloudone.trendmicro.com
- agents-082.workload.us-1.cloudone.trendmicro.com
- agents-083.workload.us-1.cloudone.trendmicro.com
- agents-084.workload.us-1.cloudone.trendmicro.com
- agents-085.workload.us-1.cloudone.trendmicro.com
- agents-086.workload.us-1.cloudone.trendmicro.com
- agents-087.workload.us-1.cloudone.trendmicro.com
- agents-088.workload.us-1.cloudone.trendmicro.com
- agents-089.workload.us-1.cloudone.trendmicro.com
- agents-090.workload.us-1.cloudone.trendmicro.com
- agents-091.workload.us-1.cloudone.trendmicro.com
- agents-092.workload.us-1.cloudone.trendmicro.com
- agents-093.workload.us-1.cloudone.trendmicro.com
- agents-094.workload.us-1.cloudone.trendmicro.com
- agents-095.workload.us-1.cloudone.trendmicro.com
- agents-096.workload.us-1.cloudone.trendmicro.com
- agents-097.workload.us-1.cloudone.trendmicro.com
- agents-098.workload.us-1.cloudone.trendmicro.com
- agents-099.workload.us-1.cloudone.trendmicro.com
- India:
- workload.in-1.cloudone.trendmicro.com
- agents.workload.in-1.cloudone.trendmicro.com
- agents-001.workload.in-1.cloudone.trendmicro.com
- agents-002.workload.in-1.cloudone.trendmicro.com
- agents-003.workload.in-1.cloudone.trendmicro.com
- agents-004.workload.in-1.cloudone.trendmicro.com
- agents-005.workload.in-1.cloudone.trendmicro.com
- agents-006.workload.in-1.cloudone.trendmicro.com
- agents-007.workload.in-1.cloudone.trendmicro.com
- agents-008.workload.in-1.cloudone.trendmicro.com
- agents-009.workload.in-1.cloudone.trendmicro.com
- agents-010.workload.in-1.cloudone.trendmicro.com
- gateway.workload.in-1.cloudone.trendmicro.com
- gateway-control.workload.in-1.cloudone.trendmicro.com
- xdr-resp-ioc.workload.in-1.cloudone.trendmicro.com
- dsmim.workload.in-1.cloudone.trendmicro.com
- relay.workload.in-1.cloudone.trendmicro.com
- agent-comm.workload.in-1.cloudone.trendmicro.com
- UK:
- workload.gb-1.cloudone.trendmicro.com
- agents.workload.gb-1.cloudone.trendmicro.com
- agents-001.workload.gb-1.cloudone.trendmicro.com
- agents-002.workload.gb-1.cloudone.trendmicro.com
- agents-003.workload.gb-1.cloudone.trendmicro.com
- agents-004.workload.gb-1.cloudone.trendmicro.com
- agents-005.workload.gb-1.cloudone.trendmicro.com
- agents-006.workload.gb-1.cloudone.trendmicro.com
- agents-007.workload.gb-1.cloudone.trendmicro.com
- agents-008.workload.gb-1.cloudone.trendmicro.com
- agents-009.workload.gb-1.cloudone.trendmicro.com
- agents-010.workload.gb-1.cloudone.trendmicro.com
- gateway.workload.gb-1.cloudone.trendmicro.com
- gateway-control.workload.gb-1.cloudone.trendmicro.com
- xdr-resp-ioc.workload.gb-1.cloudone.trendmicro.com
- dsmim.workload.gb-1.cloudone.trendmicro.com
- relay.workload.gb-1.cloudone.trendmicro.com
- agent-comm.workload.gb-1.cloudone.trendmicro.com
- Japan:
- workload.jp-1.cloudone.trendmicro.com
- agents.workload.jp-1.cloudone.trendmicro.com
- agents-001.workload.jp-1.cloudone.trendmicro.com
- agents-002.workload.jp-1.cloudone.trendmicro.com
- agents-003.workload.jp-1.cloudone.trendmicro.com
- agents-004.workload.jp-1.cloudone.trendmicro.com
- agents-005.workload.jp-1.cloudone.trendmicro.com
- agents-006.workload.jp-1.cloudone.trendmicro.com
- agents-007.workload.jp-1.cloudone.trendmicro.com
- agents-008.workload.jp-1.cloudone.trendmicro.com
- agents-009.workload.jp-1.cloudone.trendmicro.com
- agents-010.workload.jp-1.cloudone.trendmicro.com
- gateway.workload.jp-1.cloudone.trendmicro.com
- gateway-control.workload.jp-1.cloudone.trendmicro.com
- xdr-resp-ioc.workload.jp-1.cloudone.trendmicro.com
- dsmim.workload.jp-1.cloudone.trendmicro.com
- relay.workload.jp-1.cloudone.trendmicro.com
- agent-comm.workload.jp-1.cloudone.trendmicro.com
- Germany:
- workload.de-1.cloudone.trendmicro.com
- agents.workload.de-1.cloudone.trendmicro.com
- agents-001.workload.de-1.cloudone.trendmicro.com
- agents-002.workload.de-1.cloudone.trendmicro.com
- agents-003.workload.de-1.cloudone.trendmicro.com
- agents-004.workload.de-1.cloudone.trendmicro.com
- agents-005.workload.de-1.cloudone.trendmicro.com
- agents-006.workload.de-1.cloudone.trendmicro.com
- agents-007.workload.de-1.cloudone.trendmicro.com
- agents-008.workload.de-1.cloudone.trendmicro.com
- agents-009.workload.de-1.cloudone.trendmicro.com
- agents-010.workload.de-1.cloudone.trendmicro.com
- gateway.workload.de-1.cloudone.trendmicro.com
- gateway-control.workload.de-1.cloudone.trendmicro.com
- xdr-resp-ioc.workload.de-1.cloudone.trendmicro.com
- dsmim.workload.de-1.cloudone.trendmicro.com
- relay.workload.de-1.cloudone.trendmicro.com
- agent-comm.workload.de-1.cloudone.trendmicro.com
- Australia:
- workload.au-1.cloudone.trendmicro.com
- agents.workload.au-1.cloudone.trendmicro.com
- agents-001.workload.au-1.cloudone.trendmicro.com
- agents-002.workload.au-1.cloudone.trendmicro.com
- agents-003.workload.au-1.cloudone.trendmicro.com
- agents-004.workload.au-1.cloudone.trendmicro.com
- agents-005.workload.au-1.cloudone.trendmicro.com
- agents-006.workload.au-1.cloudone.trendmicro.com
- agents-007.workload.au-1.cloudone.trendmicro.com
- agents-008.workload.au-1.cloudone.trendmicro.com
- agents-009.workload.au-1.cloudone.trendmicro.com
- agents-010.workload.au-1.cloudone.trendmicro.com
- gateway.workload.au-1.cloudone.trendmicro.com
- gateway-control.workload.au-1.cloudone.trendmicro.com
- xdr-resp-ioc.workload.au-1.cloudone.trendmicro.com
- dsmim.workload.au-1.cloudone.trendmicro.com
- relay.workload.au-1.cloudone.trendmicro.com
- agent-comm.workload.au-1.cloudone.trendmicro.com
- Canada:
- workload.ca-1.cloudone.trendmicro.com
- agents.workload.ca-1.cloudone.trendmicro.com
- agents-001.workload.ca-1.cloudone.trendmicro.com
- agents-002.workload.ca-1.cloudone.trendmicro.com
- agents-003.workload.ca-1.cloudone.trendmicro.com
- agents-004.workload.ca-1.cloudone.trendmicro.com
- agents-005.workload.ca-1.cloudone.trendmicro.com
- agents-006.workload.ca-1.cloudone.trendmicro.com
- agents-007.workload.ca-1.cloudone.trendmicro.com
- agents-008.workload.ca-1.cloudone.trendmicro.com
- agents-009.workload.ca-1.cloudone.trendmicro.com
- agents-010.workload.ca-1.cloudone.trendmicro.com
- gateway.workload.ca-1.cloudone.trendmicro.com
- gateway-control.workload.ca-1.cloudone.trendmicro.com
- xdr-resp-ioc.workload.ca-1.cloudone.trendmicro.com
- dsmim.workload.ca-1.cloudone.trendmicro.com
- relay.workload.ca-1.cloudone.trendmicro.com
- agent-comm.workload.ca-1.cloudone.trendmicro.com
- Singapore:
- workload.sg-1.cloudone.trendmicro.com
- agents.workload.sg-1.cloudone.trendmicro.com
- agents-001.workload.sg-1.cloudone.trendmicro.com
- agents-002.workload.sg-1.cloudone.trendmicro.com
- agents-003.workload.sg-1.cloudone.trendmicro.com
- agents-004.workload.sg-1.cloudone.trendmicro.com
- agents-005.workload.sg-1.cloudone.trendmicro.com
- agents-006.workload.sg-1.cloudone.trendmicro.com
- agents-007.workload.sg-1.cloudone.trendmicro.com
- agents-008.workload.sg-1.cloudone.trendmicro.com
- agents-009.workload.sg-1.cloudone.trendmicro.com
- agents-010.workload.sg-1.cloudone.trendmicro.com
- gateway.workload.sg-1.cloudone.trendmicro.com
- gateway-control.workload.sg-1.cloudone.trendmicro.com
- xdr-resp-ioc.workload.sg-1.cloudone.trendmicro.com
- dsmim.workload.sg-1.cloudone.trendmicro.com
- relay.workload.sg-1.cloudone.trendmicro.com
- agent-comm.workload.sg-1.cloudone.trendmicro.com
If you have agents prior to version 20.0.0-1559, and your firewall does not allow agents*.workload.<region>.cloudone.trendmicro.com, allow access from the FQDNs below individually
FQDNs for your Trend Micro Cloud One region:
- US:
- agents-001.workload.us-1.cloudone.trendmicro.com
- agents-002.workload.us-1.cloudone.trendmicro.com
- agents-003.workload.us-1.cloudone.trendmicro.com
- agents-004.workload.us-1.cloudone.trendmicro.com
- agents-005.workload.us-1.cloudone.trendmicro.com
- agents-006.workload.us-1.cloudone.trendmicro.com
- agents-007.workload.us-1.cloudone.trendmicro.com
- agents-008.workload.us-1.cloudone.trendmicro.com
- agents-009.workload.us-1.cloudone.trendmicro.com
- agents-010.workload.us-1.cloudone.trendmicro.com
- agents-011.workload.us-1.cloudone.trendmicro.com
- agents-012.workload.us-1.cloudone.trendmicro.com
- agents-013.workload.us-1.cloudone.trendmicro.com
- agents-014.workload.us-1.cloudone.trendmicro.com
- agents-015.workload.us-1.cloudone.trendmicro.com
- agents-016.workload.us-1.cloudone.trendmicro.com
- agents-017.workload.us-1.cloudone.trendmicro.com
- agents-018.workload.us-1.cloudone.trendmicro.com
- agents-019.workload.us-1.cloudone.trendmicro.com
- agents-020.workload.us-1.cloudone.trendmicro.com
- agents-021.workload.us-1.cloudone.trendmicro.com
- agents-022.workload.us-1.cloudone.trendmicro.com
- agents-023.workload.us-1.cloudone.trendmicro.com
- agents-024.workload.us-1.cloudone.trendmicro.com
- agents-025.workload.us-1.cloudone.trendmicro.com
- agents-026.workload.us-1.cloudone.trendmicro.com
- agents-027.workload.us-1.cloudone.trendmicro.com
- agents-028.workload.us-1.cloudone.trendmicro.com
- agents-029.workload.us-1.cloudone.trendmicro.com
- agents-030.workload.us-1.cloudone.trendmicro.com
- agents-031.workload.us-1.cloudone.trendmicro.com
- agents-032.workload.us-1.cloudone.trendmicro.com
- agents-033.workload.us-1.cloudone.trendmicro.com
- agents-034.workload.us-1.cloudone.trendmicro.com
- agents-035.workload.us-1.cloudone.trendmicro.com
- agents-036.workload.us-1.cloudone.trendmicro.com
- agents-037.workload.us-1.cloudone.trendmicro.com
- agents-038.workload.us-1.cloudone.trendmicro.com
- agents-039.workload.us-1.cloudone.trendmicro.com
- agents-040.workload.us-1.cloudone.trendmicro.com
- agents-041.workload.us-1.cloudone.trendmicro.com
- agents-042.workload.us-1.cloudone.trendmicro.com
- agents-043.workload.us-1.cloudone.trendmicro.com
- agents-044.workload.us-1.cloudone.trendmicro.com
- agents-045.workload.us-1.cloudone.trendmicro.com
- agents-046.workload.us-1.cloudone.trendmicro.com
- agents-047.workload.us-1.cloudone.trendmicro.com
- agents-048.workload.us-1.cloudone.trendmicro.com
- agents-049.workload.us-1.cloudone.trendmicro.com
- agents-050.workload.us-1.cloudone.trendmicro.com
- agents-051.workload.us-1.cloudone.trendmicro.com
- agents-052.workload.us-1.cloudone.trendmicro.com
- agents-053.workload.us-1.cloudone.trendmicro.com
- agents-054.workload.us-1.cloudone.trendmicro.com
- agents-055.workload.us-1.cloudone.trendmicro.com
- agents-056.workload.us-1.cloudone.trendmicro.com
- agents-057.workload.us-1.cloudone.trendmicro.com
- agents-058.workload.us-1.cloudone.trendmicro.com
- agents-059.workload.us-1.cloudone.trendmicro.com
- agents-060.workload.us-1.cloudone.trendmicro.com
- agents-061.workload.us-1.cloudone.trendmicro.com
- agents-062.workload.us-1.cloudone.trendmicro.com
- agents-063.workload.us-1.cloudone.trendmicro.com
- agents-064.workload.us-1.cloudone.trendmicro.com
- agents-065.workload.us-1.cloudone.trendmicro.com
- agents-066.workload.us-1.cloudone.trendmicro.com
- agents-067.workload.us-1.cloudone.trendmicro.com
- agents-068.workload.us-1.cloudone.trendmicro.com
- agents-069.workload.us-1.cloudone.trendmicro.com
- agents-070.workload.us-1.cloudone.trendmicro.com
- agents-071.workload.us-1.cloudone.trendmicro.com
- agents-072.workload.us-1.cloudone.trendmicro.com
- agents-073.workload.us-1.cloudone.trendmicro.com
- agents-074.workload.us-1.cloudone.trendmicro.com
- agents-075.workload.us-1.cloudone.trendmicro.com
- agents-076.workload.us-1.cloudone.trendmicro.com
- agents-077.workload.us-1.cloudone.trendmicro.com
- agents-078.workload.us-1.cloudone.trendmicro.com
- agents-079.workload.us-1.cloudone.trendmicro.com
- agents-080.workload.us-1.cloudone.trendmicro.com
- agents-081.workload.us-1.cloudone.trendmicro.com
- agents-082.workload.us-1.cloudone.trendmicro.com
- agents-083.workload.us-1.cloudone.trendmicro.com
- agents-084.workload.us-1.cloudone.trendmicro.com
- agents-085.workload.us-1.cloudone.trendmicro.com
- agents-086.workload.us-1.cloudone.trendmicro.com
- agents-087.workload.us-1.cloudone.trendmicro.com
- agents-088.workload.us-1.cloudone.trendmicro.com
- agents-089.workload.us-1.cloudone.trendmicro.com
- agents-090.workload.us-1.cloudone.trendmicro.com
- agents-091.workload.us-1.cloudone.trendmicro.com
- agents-092.workload.us-1.cloudone.trendmicro.com
- agents-093.workload.us-1.cloudone.trendmicro.com
- agents-094.workload.us-1.cloudone.trendmicro.com
- agents-095.workload.us-1.cloudone.trendmicro.com
- agents-096.workload.us-1.cloudone.trendmicro.com
- agents-097.workload.us-1.cloudone.trendmicro.com
- agents-098.workload.us-1.cloudone.trendmicro.com
- agents-099.workload.us-1.cloudone.trendmicro.com
- India:
- agents.workload.in-1.cloudone.trendmicro.com
- agents-001.workload.in-1.cloudone.trendmicro.com
- agents-002.workload.in-1.cloudone.trendmicro.com
- agents-003.workload.in-1.cloudone.trendmicro.com
- agents-004.workload.in-1.cloudone.trendmicro.com
- agents-005.workload.in-1.cloudone.trendmicro.com
- agents-006.workload.in-1.cloudone.trendmicro.com
- agents-007.workload.in-1.cloudone.trendmicro.com
- agents-008.workload.in-1.cloudone.trendmicro.com
- agents-009.workload.in-1.cloudone.trendmicro.com
- agents-010.workload.in-1.cloudone.trendmicro.com
- UK:
- agents.workload.gb-1.cloudone.trendmicro.com
- agents-001.workload.gb-1.cloudone.trendmicro.com
- agents-002.workload.gb-1.cloudone.trendmicro.com
- agents-003.workload.gb-1.cloudone.trendmicro.com
- agents-004.workload.gb-1.cloudone.trendmicro.com
- agents-005.workload.gb-1.cloudone.trendmicro.com
- agents-006.workload.gb-1.cloudone.trendmicro.com
- agents-007.workload.gb-1.cloudone.trendmicro.com
- agents-008.workload.gb-1.cloudone.trendmicro.com
- agents-009.workload.gb-1.cloudone.trendmicro.com
- agents-010.workload.gb-1.cloudone.trendmicro.com
- Japan:
- agents.workload.jp-1.cloudone.trendmicro.com
- agents-001.workload.jp-1.cloudone.trendmicro.com
- agents-002.workload.jp-1.cloudone.trendmicro.com
- agents-003.workload.jp-1.cloudone.trendmicro.com
- agents-004.workload.jp-1.cloudone.trendmicro.com
- agents-005.workload.jp-1.cloudone.trendmicro.com
- agents-006.workload.jp-1.cloudone.trendmicro.com
- agents-007.workload.jp-1.cloudone.trendmicro.com
- agents-008.workload.jp-1.cloudone.trendmicro.com
- agents-009.workload.jp-1.cloudone.trendmicro.com
- agents-010.workload.jp-1.cloudone.trendmicro.com
- Germany:
- agents.workload.de-1.cloudone.trendmicro.com
- agents-001.workload.de-1.cloudone.trendmicro.com
- agents-002.workload.de-1.cloudone.trendmicro.com
- agents-003.workload.de-1.cloudone.trendmicro.com
- agents-004.workload.de-1.cloudone.trendmicro.com
- agents-005.workload.de-1.cloudone.trendmicro.com
- agents-006.workload.de-1.cloudone.trendmicro.com
- agents-007.workload.de-1.cloudone.trendmicro.com
- agents-008.workload.de-1.cloudone.trendmicro.com
- agents-009.workload.de-1.cloudone.trendmicro.com
- agents-010.workload.de-1.cloudone.trendmicro.com
- Australia:
- agents.workload.au-1.cloudone.trendmicro.com
- agents-001.workload.au-1.cloudone.trendmicro.com
- agents-002.workload.au-1.cloudone.trendmicro.com
- agents-003.workload.au-1.cloudone.trendmicro.com
- agents-004.workload.au-1.cloudone.trendmicro.com
- agents-005.workload.au-1.cloudone.trendmicro.com
- agents-006.workload.au-1.cloudone.trendmicro.com
- agents-007.workload.au-1.cloudone.trendmicro.com
- agents-008.workload.au-1.cloudone.trendmicro.com
- agents-009.workload.au-1.cloudone.trendmicro.com
- agents-010.workload.au-1.cloudone.trendmicro.com
- Canada:
- agents.workload.ca-1.cloudone.trendmicro.com
- agents-001.workload.ca-1.cloudone.trendmicro.com
- agents-002.workload.ca-1.cloudone.trendmicro.com
- agents-003.workload.ca-1.cloudone.trendmicro.com
- agents-004.workload.ca-1.cloudone.trendmicro.com
- agents-005.workload.ca-1.cloudone.trendmicro.com
- agents-006.workload.ca-1.cloudone.trendmicro.com
- agents-007.workload.ca-1.cloudone.trendmicro.com
- agents-008.workload.ca-1.cloudone.trendmicro.com
- agents-009.workload.ca-1.cloudone.trendmicro.com
- agents-010.workload.ca-1.cloudone.trendmicro.com
- Singapore:
- agents.workload.sg-1.cloudone.trendmicro.com
- agents-001.workload.sg-1.cloudone.trendmicro.com
- agents-002.workload.sg-1.cloudone.trendmicro.com
- agents-003.workload.sg-1.cloudone.trendmicro.com
- agents-004.workload.sg-1.cloudone.trendmicro.com
- agents-005.workload.sg-1.cloudone.trendmicro.com
- agents-006.workload.sg-1.cloudone.trendmicro.com
- agents-007.workload.sg-1.cloudone.trendmicro.com
- agents-008.workload.sg-1.cloudone.trendmicro.com
- agents-009.workload.sg-1.cloudone.trendmicro.com
- agents-010.workload.sg-1.cloudone.trendmicro.com
Workload Security IP addresses
If you need to restrict the IP addresses that are allowed in your environment, read this section to determine which ones must be allowed inbound and outbound.
Inbound IP addresses
If a firewall or AWS security group restricts which IP addresses are allowed inbound to your network, make sure to allow traffic inbound from the Workload Security subnet to the destination components listed below.
| Source | Destination component, port, and protocol (on your network) |
Notes |
|---|---|---|
|
Workload Security Subnet information:
|
SIEM or syslog server Default port: 514 Protocol: syslog over UDP |
Only allow this traffic if you configured a SIEM or syslog server. |
|
Agent Default port: 4118 Protocol: HTTPS over TCP |
Only allow this traffic if you configured your agents to use bidirectional or manager-initiated communication. (By default, agents use agent-initiated communication.) | |
|
Relay Default port: 4122 Protocol: HTTPS over TCP |
Only allow this traffic if you deployed relays in your local network. (Under normal circumstances, you don't need local relays.) |
For Workload Security accounts created prior to 2020-11-23
The static IP addresses in the "Outbound IP addresses" section apply only to accounts for Workload Security or Deep Security as a Service created prior to 2020-11-23.
To determine when your account was created, click your tenant name at the top of the console and select Account Details. Your information is listed next to Created.
Outbound IP addresses
If a firewall or AWS security group restricts which IP addresses are allowed outbound from your network, make sure to allow HTTPS traffic outbound on port 443 to the Trend Micro destination IPv4 addresses listed in the table below.
| Source (on your network) | Destination component, port, and protocol | Destination IP addresses |
|---|---|---|
| Agents, administrator's computer |
Workload Security GUI Port: 443 Protocol: HTTPS over TCP |
34.196.38.94 34.198.27.224 34.198.6.142 34.205.210.199 34.205.219.175 34.205.239.162 34.226.116.82 34.233.153.57 35.153.222.175 35.169.254.68 35.169.43.208 35.172.176.62 p>50.17.162.19452.0.124.201 52.0.33.128 52.202.124.22 52.207.138.122 52.22.162.229 52.3.171.31 52.72.111.249 52.72.211.36 52.87.46.150 54.175.211.84 54.80.120.113 |
| Agents, relays |
Trend Micro Update Server (also called Active Update) and Download Center Port: 443 Protocol: HTTPS over TCP |
3.210.17.243 3.222.238.73 18.205.30.1 18.210.96.90 34.193.172.66 34.194.74.60 34.196.197.189 34.204.219.38 34.204.220.78 34.205.83.195 34.227.254.106 34.232.200.81 52.2.63.133 52.3.39.108 52.4.197.109 52.20.8.32 52.21.149.243 52.44.144.238 52.55.188.35 52.201.199.128 52.204.10.77 52.206.54.30 52.206.193.178 52.207.18.27 54.86.152.157 54.87.173.241 54.144.77.16 54.156.82.102 54.160.187.232 54.165.40.223 54.165.117.76 54.174.156.3 54.175.39.189 54.210.11.136 54.211.23.144 54.221.238.214 174.129.163.104 |
| Agents |
Workload Security heartbeat and activation servers Port: 443 Protocol: HTTPS over TCP |
34.192.67.219 34.196.25.105 34.199.44.254 34.204.244.61 34.206.23.113 34.206.95.140 34.206.146.6 34.206.215.233 52.23.102.52 52.54.141.100 52.54.240.176 54.86.2.200 |
| Agents |
Component: Workload Security fast heartbeat Port: 443 Protocol: HTTPS over TCP
|
34.192.145.157 34.199.111.255 34.204.221.63 34.206.179.241 52.44.129.132 52.45.95.227 52.55.183.116 52.73.88.81 52.202.143.169 52.206.208.21 54.208.106.230 54.152.108.196 54.85.86.247 18.204.77.2 54.84.198.181 52.0.58.66 52.6.19.160 18.233.125.165 34.227.134.223 52.73.122.26 34.233.252.54 34.236.163.142 52.44.40.85 3.209.15.127 52.70.113.18 3.210.118.160 54.175.77.19 3.225.117.164 54.224.63.108 52.72.213.26 18.235.177.174 34.203.45.194 54.165.185.17 |
| Agents |
Smart Protection Network Ports: 80 and 443 Protocols: HTTP and HTTPS, over TCP |
Trend Micro's cloud-based Smart Protection Network does not have static IP addresses. If you want to use the Smart Protection Network but need to restrict your outbound communication, we suggest you deploy a Smart Protection Server in your environment. For information on how to do this, see Deploy a Smart Protection Server in AWS. |