Configure communications with the Insight Platform
Still need to opt-in to the cloud?
See Activating your console on the Insight Platform for instructions.
You may need to configure your firewall rules to allow outbound connectivity to the following hostnames according to your selected region in order to successfully upload data to the Insight Platform:
All hostnames listed below are reached via TCP port 443.
You can test your connection to the Insight Platform with the Security Console's Cloud Diagnostics tool. To do so, click the Administration tab in InsightVM and click Diagnose next to Troubleshooting. Uncheck all boxes except for Cloud Diagnostics and click Perform Diagnostics. After a few seconds, you'll see if you can communicate with the Insight Platform!
Ticketing and Container Registry connections
Rapid7 provides the following list of static IP addresses that you may use to allow traffic originating from the Insight Platform to your on-prem JIRA or container registries:
All IP addresses listed below are reached via TCP port 443.
This does not address agent proxying use cases or scenarios relating to communication originating from customer environments to the Insight Platform.
Data Transmitted to the Insight Platform
The following types of information are transmitted to the Insight Platform:
- Asset information
- Asset groups
- Asset owners
- Vulnerability exceptions
- Scan Engine information
- InsightVM Console information
- User information
InsightVM does not transmit service or user credentials of any kind to the Insight Platform.
Looking for Security Console port information?
See Requirements for console-specific port needs.