Skip to main content
NetApp Knowledge Base

Firewall detects threat alert with NetApp Console

Views:
25
Visibility:
not set
Votes:
0
Category:
netapp_console
Specialty:
netapp_console
Last Updated:

Applies to

NetApp Console

Issue

  • Firewall or security monitoring system has detected a threat alert related to the endpoint https://api.bluexp.netapp.com after installing or using NetApp Console.
  • The alert raises concerns about a possible vulnerability or suspicious activity associated with this URL.

Cause

Some firewalls or security tools may flag this traffic as suspicious due to the nature of the real-time monitoring, anomaly detection, and automated actions (such as immutable snapshot creation) performed by NetApp Console.

Solution

  • The endpoint https://api.bluexp.netapp.com is a legitimate, required service endpoint used by the NetApp Console to provide features and services, including AI/ML-powered anomaly detection, ransomware protection, and management functionality.
  • No vulnerability exists with https://api.bluexp.netapp.com.
  • The endpoint is required for the full functionality of NetApp Cons ole.
  • Mark the alert as a false positive in the firewall or security system. 

Partner Notes

partnerNotes_text

Additional Information

additionalInformation_text

Internal Notes

internalNotes_text

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support