Application, access approval, vendor integration, validation, and rollback steps for receiving threat intelligence feeds from KDC's secure infrastructure.
KDC USOM Feed Service is available only to reviewed and approved organizations. Submit your organization, firewall, and source public IP details through the application form. After technical review and approval, your dedicated connection IP/FQDN, port, feed URLs, and vendor-specific settings are delivered through a secure channel.
Provide your organization, authorized contact, firewall vendor/model, software version, and source public IP.
The request is reviewed for intended use, connection source, security requirements, and vendor compatibility.
The approved source public IP is added to KDC's secure access allowlist.
IP/FQDN, port, feed URLs, and vendor-specific object values are shared only after approval through a secure channel.
Validate retrieval and entry counts first, then enforce a controlled policy with logging enabled.
Security note: Actual service IPs, ports, and feed URLs are not published in public documentation.
EDL objects, TLS, service routes, policy, and verification.
Open guide →External Threat FeedIP, domain, and URL external connector deployment.
Open guide →Third-party FeedIPv4, domain, and URL threat-feed integration.
Open guide →Network Feed / IOCNetwork Feed and Custom Intelligence methods.
Open guide →DEAGIP and FQDN Dynamic External Address Groups.
Open guide →Blocked Sites ImportControlled export, import, exceptions, and rollback.
Open guide →View every official vendor guide and KB link used by this project on one page.