I am a network security engineer at my company and my customer’s recently moved to a new VPN solution and on that new solution they are having issues running Knime Analytics Platform.
I can see their traffic in the firewall being allowed, but the sessions are ending due to certificate errors, most likely because client Knime application, or the destination end, is not configured to allow the certificate from my firewall as the traffic is being decrypted. This isn’t an uncommon issue and when we verify traffic safety we can bypass decryption on this traffic which will then allow the traffic to flow without issue.
My problem is that I cannot determine, nor can my customers define for me, the locations to which the Knime Analytics Platform is reaching out. I see different IP addresses that appear to be either hosted on AWS or Azure, but they change so frequently it is both unreasonable and unmanageable to update it in real time.
Is there a way to determine where the Knime applicatoin is reaching out to? Is there somewhere in the configuration I can look?
Also, is there somewhere on the client application I can go to see what certificate store it is using/permitting?