1 of 1 people found this helpful
Both ip address are valid.First one is from epo.mcafee.com and second one is from update.nai.com
You can not use ip address to avoid your firewall or DNS resolution because the site or servers hosting the DAT content requires hundreds of IP addresses for load balancing and high availability. These IP addresses are not static and McAfee does not support their direct use. For details, see KB54974.
So no worries. i think is there a way in your fire wall to unblock these sites? If yes then you can get out of this problem.
Thanks Alexn for your answer.
I looked at the KB54974 and the update.nai.com links, but didnt see any connection between McAfee and the IP 22.214.171.124 (Which is part of the NV-AKAMAI-Net - 126.96.36.199/25)
(It seems the .gem files at the update.nai.com are binary and cannot be read)
I've open this network cause:
1. it dosent work if this network is closed on the FW.
2. names relation AKAM and AKAMAI
The update works fine but I just wanted to understand where this load balancing IPs are coming from. cause I dont want to open this server to all the world but I want to open it to all the McAfee update servers needed.
if you can direct me to a source which expalin how this update work and which servers IPs are choosen I'll be glad.