IPDebrief

216.151.138.198

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 216.151.138.198/32

Classification: Low Risk - Cisco Webex Infrastructure

Generated: 2026-06-24

## Executive Summary

IP address 216.151.138.198 is a Cisco Webex LLC infrastructure endpoint located in San Jose, CA. The IP presents low individual risk (score 30/100) with no active threat indicators. While the /24 neighborhood exhibits elevated abuse density, this specific endpoint remains benign with no services exposed.

## Key Findings

Ownership & Network Classification

Risk Profile

Services & Exposure

## Neighborhood Context

## Observation History

## Relationships

## Recommended Actions

Firewall Rules

No blocking recommended. This IP represents legitimate Cisco Webex infrastructure.

Monitoring Guidelines

SOC Analyst Notes

This IP is part of Cisco's enterprise security infrastructure. The single DNSBL listing is likely a false positive or historical artifact. The elevated neighborhood risk score reflects general abuse activity in the /24 subnet but does not indicate specific compromise of this endpoint. No immediate threat action required.

Status: CLEAR - Legitimate Infrastructure Endpoint

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΊπŸ‡Έ United States
RegionCA
CitySan Jose
Timezoneβ€”
Latitude37.75
Longitude-97.82

🏒 Ownership & Registration

OrganizationCisco Webex LLC
ASNAS13445
Network Nameβ€”
CIDR Block216.151.128.0/20
RIRARIN
Countryβ€”
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTR RecordNo PTR
Forward ConfirmedNo β€” PTR hostname does not resolve back to this IP (weak signal)

πŸ” DNS Hygiene

Hygiene Score40% (Fair)
SPFNot configured
DMARCNot configured
FCrDNSNot verified
DNSSECValid
CAAPresent

☁️ Network Classification

InfrastructureUnknown
Service PurposeFirewalled / No Services
Network TierTier 3 β€” Basic operator with some routing infrastructure
No specific classification

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverβ€”
HTTP Titleβ€”

πŸ” TLS Certificate

πŸ”’
No certificate
Issued by β€”
N/A
SANsNone
Valid Fromβ€”
Valid Untilβ€”

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
28%
24
routing
25%
34
services
17%
23
ownership
22%
34
reputation
27%
13
geolocation
28%
23
Overall24%1321
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (65%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-05-07 23:05:10 UTC
Last Seen2026-06-26 18:12:07 UTC
Profile Built2026-06-27 01:51:07 UTC
Data FreshnessLive
Signal Types27
Total Observations56
πŸ” 27 signal types Β· 56 observations collected
This report is generated from 27+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.