Required network access for 3.9.55 and below
Suggest changes
PDFs
NetApp Console, the NetApp Console agent, and NetApp data services require outbound internet access to contact necessary endpoints.
|
This topic documents the network access required for versions of the NetApp Console standard mode 3.9.55 and below. For required endpoints for 4.0.0 and above, review the required endpoints for 4.0.0 and higher. |
You need to set up network access for the following:
-
Computers that access the NetApp Console as software as a service (SaaS)
-
Console agents you install on-premises or in the cloud.
Update your endpoint list to the revised list for 4.0.0 and higher
Starting with version 4.0.0, Console agents require fewer endpoints. Existing deployments before 4.0.0 remain supported. After upgrading to 4.0.0 or later, you may remove the old endpoints from your allow list when convenient.
NetApp recommends updating firewall rules to use the revised endpoint list, which is smaller, more secure, and easier to manage. NetApp removes the need for wildcard entries, and endpoints for agent upgrades support all data services.
| Endpoints for 3.9.55 and below | Endpoints for 4.0.0 and above | Purpose |
|---|---|---|
|
|
For licensing and contacting NetApp Support. |
|
|
For day-to-day operations. |
|
|
To obtain images for Console agent upgrades. |
-
Verify that your agent is version 4.0.0 or higher. View agent version.
-
Whitelist the endpoints in Supported endpoints for 4.0.0 and higher.
-
Restart the service manager 2 service on each agent by running the following command:
systemctl restart netapp-service-manager.service -
Run the following command and verify that the agent's status shows as active(running):
_systemctl status netapp-service-manager.service -
Remove the old endpoints from your firewall allow list.
Endpoints for NetApp Console and Console agents for 3.9.55 and below
These endpoints are used for Console agents 3.9.55 and below.
| Endpoints | Purpose |
|---|---|
https://support.netapp.com |
To obtain licensing information and to send AutoSupport messages to NetApp support. |
https://*.api.bluexp.netapp.com |
To provide features and services within the NetApp Console. |
Choose between two sets of endpoints:
|
To obtain images for Console agent upgrades. NetApp recommends allowing Option 1 endpoints in your firewall as they are more secure and disallowing Option 2 endpoints, unless you are using Ransomware Resilience or Backup and Recovery. Note the following about these endpoints:
|
Cloud provider endpoints contacted by the Console agent
Console agents must have access to additional endpoints if they are deployed in your cloud provider.
Enable access to the cloud provider endpoints before installing the Console agent.
Cloud provider endpoints are the same for all versions.
Data services endpoints contacted by the Console agent
The Console agent requires additional outbound internet access to support some NetApp data services and Cloud Volumes ONTAP.