Forcepoint managed agent bypass list

This topic lists the domains that are bypassed by default for the Mobile Endpoint Agent.

Secure Gateway managed bypass list

The following domains are included in the Secure Gateway bypass list:

Table 1.
Domain
download.microsoft.com
ntservicepack.microsoft.com
cdm.microsoft.com
download.windowsupdate.com
officecdn.microsoft.com.edgesuite.net
wustat.windows.com
windowsupdate.microsoft.com
update.microsoft.com
emdl.ws.microsoft.com
adl.windows.com
swcdn.apple.com
updates-http.cdn-apple.com
updates.cdn-apple.com
query1.finance.yahoo.com
query2.finance.yahoo.com
mp.microsoft.com
dl.ws.microsoft.com
delivery.mp.microsoft.com
v4.download.windowsupdate.com

Forcepoint managed mobile bypass list

The following domains are appended to the Secure Gateway bypass list and apply specifically to mobile devices:

Table 2.
Domain Purpose
*.ingest.de.sentry.io App log ingestion
*.apps.apple.com App Store
*.itunes.apple.com App Store
*.ls.apple.com App Store
*.mzstatic.com App Store
Note: Sentry log ingestion domains follow the format https://<uuid>.<uint64>.ingest.de.sentry.io.