Firefox tries to connect to high risk IP
We realized that our Firefox ESR 91.4.1 (installed on couple of hundreds of PCs) tries to connect to the IP 34.107.221.82 which is marked as high risk. How is it possible? What exactly wants Firefox to do with this IP.
It is strange that connection to this IP goes directly and be blocked on our corporate firewall. Why does it go directly even if proxy is enabled and works. ?
Kind regards Vladimir
Chosen solution
Hello,
This is the ip address for detectportal.firefox.com. Firefox uses this service to check if it has access to the internet.
To disable this, you can set a preference for network.captive-portal-service.enabled to be set to false.
Read this answer in context 👍 1All Replies (4)
Chosen Solution
Hello,
This is the ip address for detectportal.firefox.com. Firefox uses this service to check if it has access to the internet.
To disable this, you can set a preference for network.captive-portal-service.enabled to be set to false.
Can you be more specific as to who marked this high risk?
also there is a policy that controls this as well.
https://github.com/mozilla/policy-templates/blob/master/README.md#captiveportal
I've first just resolved the IP with "nslookup 34.107.221.82" and received "82.221.107.34.bc.googleusercontent.com". So, it didn't help me further...
High risk I found on: https://www.ipqualityscore.com/free-ip-lookup-proxy-vpn-test/lookup/34.107.221.82 https://www.abuseipdb.com/check/34.107.221.82
but of course you cannot trust to every source on the internet...
I am assuming that the ip changes from time to time, as it is google's ip. I believe that this is supported by the fact that the reports are for different issues with the ip.
As I said, this is (at least currently) the ip behind detectportal.