This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Whitelisting up2date servers

Hi Everyone,

I've been digging around the forums and searching the sophos site, but havent been able to find information on the IP addresses of the up2date servers used by astaro / sophos UTM.

I have a virtual interface I can dedicate to the up2date functionality and would like to lock it down to communicate only with the up2date servers.

The only mention I see is in the up2date logs, where I see the following IP addresses on a up2date fail:

175.41.132.12:443
184.72.238.199:443
79.125.21.244:443

Would whitelisting these IP addresses and allowing the up2date service on the firewall be sufficient to limit access to the up2date interface to only performing the autoupdates?

Or are there more up2date servers I would need to permit?

Thanks!

This thread was automatically locked due to age.

Parents

0 BAlfson over 11 years ago

keeping the "management network" entirely off the internet

By default, a firewall blocks all traffic that isn't specifically allowed. What traffic from the "management network" now can reach the Internet?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 11 years ago

keeping the "management network" entirely off the internet

By default, a firewall blocks all traffic that isn't specifically allowed. What traffic from the "management network" now can reach the Internet?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data