Hey,
We got our firewall setup as if you don't have sophos endpoint agent installed you don't have internet access.
The problem is : you can't install sophos endpoint agent if you don't have sophos endpoint agent installed first because having sophos endpoint agent installed grants you an internet access.
Work around : installing it in DMZ or shared connexion.
In Web > Exceptions we have the default sophos authorisations :
We also have a firewall rules whitelisting sophos address listed here Domains and ports to allow - Sophos Central Admin :
What else can we do in order to let Sophos endpoint agent install ?
In logs the app tries to communicate with dzr-api-amzn-us-west-2-fa88.api-upe.p.hmr.sophos.com and it seems authorized to me.
Have a nice day.
This thread was automatically locked due to age.
