Need Nagios IP/CIDR list for ASN blocking

[Dusan.Mandic]

Hello all,

Is there a listing / domain tree of all the IP/CIDR of Nagios network that we would need for operations ( installing, XI operations, updates, etc).

Our security team recently instituted ASN blocking and seems to have caught most Nagios ops. We tried to whitelist with FQDN/domains but it seems like only IPs/CIDRs work.

Would it be possible for someone to provide the aforementioned?

Best,

Dusan

[vtrac]

Hi Dusan,
I don't think we have a list handy, but here are what I know:
nagios.com 45.33.1.79
nagios.org 45.33.126.74
support.nagios.com 66.228.48.232
api.nagios.com 50.116.21.73
exchange.nagios.org 66.228.58.94
repo.nagios.com / assets.nagios.com 45.79.49.120

Regards,
Vinh

[Dusan.Mandic]

Thanks Vinh,

Our NagiosXI server also gets an error stating it was unable to check for updates. Is this a seperate URL than what is listed above?

[vtrac]

Hi,
The check for update used the below URL:
https://www.nagios.com/checkforupdates/ ... i&version=.......

So "www.nagios.com" is used and already included in the list proviced.


Vinh

[Dusan.Mandic]

We already have Nagios IP above whitelisted, I think its using a mirror, errors out when trying to receive update status.

host 50.116.21.73
73.21.116.50.in-addr.arpa domain name pointer newvs1.nagios.com

[vtrac]

You might be right!!
I'm sorry but I don't have any info on "45.33.120.111" ...

Vinh

[Dusan.Mandic]

host 50.116.21.73
73.21.116.50.in-addr.arpa domain name pointer newvs1.nagios.com

posted wrong IP sorry

[vtrac]

Yup, that could be the one doing the "auto_update_check".

Vinh

[Dusan.Mandic]

OK. Are there any more like this you can think we would run into? Have to do it by IP/CIDR, so we cant really cast a wide net

[vtrac]

Hi,
There is not really an official list for this, so those are all that I can think of ...


Vinh