Re: C1300 to External Communication

Translator · ‎10-05-2025

Specifying source IP segment as administrative access restriction in C1300-24T-4G.

Periodically, an HTTP communication is sent from the external IP (the address is 184.28.x.x, 23.x..x.x) to the C1300, and a log appears when dropped.

Since there is a firewall, there should be no access to the internal C1300 directly from the outside, so I think that the response to the periodic access from the C1300 to the outside has been dropped. Is there an update check such as activation and version check like the C9000 series?

M02@rt37 · ‎10-05-2025

Hello

Is the call home service enable ?

Do you check IP addresses from RIR's bdd ?

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.

Translator · ‎10-06-2025

The command does not include the call home setting. (It is not specifically disabled when enabled as the default behavior for C1300.)

The actual IP addresses are 184.28.244.116 and 23.194.198.65 (both are Akamai's own IP).

M02@rt37 · ‎10-06-2025

Ok,

Possible to Wireshark from C1300 WAN interfaces ?

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.

Translator · ‎10-14-2025

As a result of the capture, C1300 had periodic (about 2-5 minutes) access to cisco.com over HTTP.

The response is dropped because it is restricted by the ACL, but there is no effect on other communications. If the communication is necessary for C1300, it is allowed by ACL How can I do it?