Firewall detects threat alert with NetApp Console
Applies to
NetApp Console
Issue
- Firewall or security monitoring system has detected a threat alert related to the endpoint https://api.bluexp.netapp.com after installing or using NetApp Console.
- The alert raises concerns about a possible vulnerability or suspicious activity associated with this URL.
Cause
Some firewalls or security tools may flag this traffic as suspicious due to the nature of the real-time monitoring, anomaly detection, and automated actions (such as immutable snapshot creation) performed by NetApp Console.
Solution
- The endpoint
https://api.bluexp.netapp.comis a legitimate, required service endpoint used by the NetApp Console to provide features and services, including AI/ML-powered anomaly detection, ransomware protection, and management functionality. - No vulnerability exists with https://api.bluexp.netapp.com.
- The endpoint is required for the full functionality of NetApp Cons ole.
- Mark the alert as a false positive in the firewall or security system.
Partner Notes
partnerNotes_text
Additional Information
additionalInformation_text
Internal Notes
internalNotes_text
