The main sources of ISDB is vendors’ publish and ASN, meanwhile, we collect IPs from Fortinet DNS logs, Application Control logs, DNS lookup, etc. For Zoom, the main source is https://assets.zoom.us/docs/ipranges/Zoom.txt.
For this case, in the design of ISDB, one 3-tuple (IP-protocol-port) only can be recognized as one application. And “static.zdassets.com” and “static.ada.support” are third-party service of Zoom. If their IPs are included in Zoom ISDB object, the other applications which also use these services will be as Zoom incorrectly. Thus, we can’t add the IPs of these two FQDNs to Zoom object.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.