Configure internal IP addresses and DNS suffixes
You can configure the internal IP addresses
and DNS suffixes that you want end users to access while they are protected by ETP. This
includes networks that are set up with ETP Client, DNS Forwarder, and ETP Proxy. These
conditions apply:
- If DNS suffixes are configured in ETP, the client does not check the threat status of domains with these suffixes because they are internal to the corporate network.
- If internal IPv4 or IPv6 addresses are configured, these IP addresses are preferred over public IP addresses. For example, this applies if both internal and public IP addresses are returned by DNS servers in a split DNS network topology.
Options are also available for you to add the IP ranges or blocks that are reserved on the Internet for private or internal networks as defined by RFC 1918 and RFC 4193.
- If a super administrator selects to add RFC 1918 IP addresses, these IPv4 ranges are added: 10.0.0.0/8, 172.16.0.0/12, and 192.168.0.0/16.
- If a super administrator selects to add RFC 4193 IP addresses, the IPv6 block FC00::/7 is added.