Solved

Linux Agent firewall requirements...

  • 19 April 2022
  • 4 replies
  • 56 views

Badge

Hello,

So the requirements on what to allow outbound through our firewall for Windows agents (for WindowsUpdate) are very clear.  But what do we need to allow for Linux agents?  Or does all of that come via Automox’s cloud CDN?

Cheers,
Mark.

icon

Best answer by ElmerP-Automox 3 May 2022, 14:02

View original

4 replies

Userlevel 1

Hello Mark,

The following outbound connectivity is required by the Automox Agent:

Agent access to the Automox platform on 443/tcp (https), and some third-party patches:

  • api.automox.com

Agent access to content uploaded on 443/tcp (https) for use with Worklets and Required Software Policies:

  • automox-policy-files.s3.us-west-2.amazonaws.com

Device access to Linux distro-specific yum or apt repositories, depending on your device’s configuration present in /etc/yum.repos.d/ or /etc/apt/sources.list.d/, such as:

  • Ubuntu: us.archive.ubuntu.com, security.ubuntu.com
  • CentOS: vault.centos.org, mirrorlist.centos.org

Hope this helps.

Kind regards,

Elmer Pallarca

Sr. Customer Success Engineer

Automox

(ref. https://support.automox.com/help/agent-firewall-allowlisting-rules)

Badge

Hello!

Thanks for the reply.  Are you saying that for Automox to patch a Linux (Ubuntu in our case) device, it will also need the Ubuntu apt repositories whitelisted on the firewall?

Cheers,
Mark.

Userlevel 1

Hello Mark,

Yes - the Ubuntu device does need to be able to directly connect to the Ubuntu apt repositories to pull down patches/packages.

Kind regards,

Elmer

Badge

Amazing, thanks for the quick reply!

Reply