I have a web proxy ..tunnel filters...and AIP-SSM....inside of the network...i configure host service, network setting and hhtp-proxy to use my proxy when updating global corelation ...
On proxy I allow hhtps to 18.104.22.168 ---ironport service.
In proxy log I see that https to 22.214.171.124 is allowed and after that ips try to sending http packets to 126.96.36.199 -----I SEE in the RIPE that is AKAMAI technologies IP..address.
What is this?
Why my IPS - aip-ssm send requests to 188.8.131.52 port 80