08-15-2025 07:47 PM
Hi,
I use broker VM for bridging communication between XDR agent and XDR cloud. But the communication can happen only when the agent reside in internal network. Does cortex xdr have mechanism to detect whether inside or outside network? So it can decide to send data via broker VM (inside network) or direct to cloud (outside network)?
Thanks in advance
08-19-2025 08:14 AM
You can configure agent to use as a proxy the Broker VM. As far as the agent has physical network access to the BVM that should work.
And yes, there is a config that will tell XDR what is inside the network and outside the network
When you configure the agent settings profile, you scroll down to the Network Location Configuration and you will see there the option to add the DNS and IP address so that the agent will know if it is inside or outside internal network.
Please check the attached screenshot as a reference
If you feel this has answered your query, please let us know by clicking like and on "mark this as a Solution". Thank you.
KR,
Luis
08-19-2025 08:47 AM
Thanks Eluis
What I try to find is configuration to make XDR agent can automatically decide to :
1. Connect to broker VM when XDR agent reside on internal network
2. Connect direct to XDR tenant on cloud when XDR agent reside on outside network (can not reach broker VM)
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
