Your sensor communicates with multiple systems to download configuration and provision themselves, to upload test results, and also to upload PCAP files (if enabled). Below is a list of the minimum URLs which you will need to whitelist in order for the sensor to function correctly. Any additional services which you set up for testing will also need to be whitelisted in order for them to be tested correctly.

This is the primary URL for all sensor configuration and test result communication:
https://device-gateway.capenetworks.io

The following URLs are used to test whether the sensor has external connectivity. No information is passed to them, and the only thing we check for is that they are accessible and have the correct content on them. To be completely clear, these URLs will in no way receive or transmit any sensitive information to the sensor:
http://cdn.capenetworks.io/auth
http://cdn.capenetworks.io/connectivity-check
http://35.241.22.134/auth.html
http://35.241.22.134/connectivity-check
http://captive.apple.com/hotspot-detect.html
http://connectivitycheck.gstatic.com/generate_204

These are additional URLs allowing the sensor to upload results, and to also download OTA (over the air) firmware updates, tools, and patches:
https://cape-device-binaries.s3.amazonaws.com
https://cape-build-artefacts.s3.amazonaws.com
https://cape-storage-service.s3.amazonaws.com

Did this answer your question?