Allxon Service Whitelist

Internet Access Requirement for Allxon Agent

If your organization restricts network communication with the internet using a firewall or proxy device, please ensure that these endpoints are allowed.

Service connection point:

In-band Service

#	Destination	Protocol	Port	Requirement Type	Purpose
1	*.adm.allxon.com	HTTPS	443 8883	Must have	Connection between Allxon Agent and Allxon Portal
2	bdmwebfile-prod-us.s3.us-east-2.amazonaws.com	HTTPS	443	Must have	Amazon S3 storage for screenshot, log collections , command execution, and any temp file storage
3	api-us.adm.allxon.com	HTTPS	443	Must have	Connection between Allxon Agent and Allxon Portal,for us region, Allxon Agent version must equas to or higher than Agent 3.03.
4	endpoints.adm.allxon.com	HTTPS	443	Must have	Connection between Allxon Agent and Allxon Portal. Allxon Agent version must less than Agent 3.03.
5	api.adm.allxon.com	HTTPS	443	Optional	Access to Allxon device API. Allxon Agent version must less than Agent 3.10
6	iot-ecc-us.adm.allxon.com	MQTTS	443 8883	Must have	MQTTS. Allxon Agent version must less than Agent 3.11
7	cloudflare-dns.com	HTTPS	443	Optional	DNS over HTTPS
8	roughtime.cloudflare.com	UDP	2002	Optional	Clock Synchronization

*Note: If you are a user in the EU region, please contact us for more information.

Out-of-band Service

#	Destination	Protocol	Port	Requirement Type	Purpose
1	endpoints.adm.allxon.com	HTTPS	443	Must have	Connection between Allxon Agent and Allxon Portal
2	api-us.adm.allxon.com	HTTPS	443	Must have	Connection between Allxon Agent and Allxon Portal
3	api.adm.allxon.com	HTTPS	443	Must have	Access to Allxon device API
4	bdmwebfile-prod-us.s3.us-east-2.amazonaws.com	HTTPS	443	Must have	Amazon S3 storage for screenshot, log collections , command execution, and any temp file storage
5	cloudflare-dns.com	HTTPS	443	Optional	DNS over HTTPS
6	iot-us.adm.allxon.com	MQTTS	443 8883	Must have	DNS over HTTPS
7	time.google.com	UDP	123	Must have	Clock Synchronization