Hi all,

Due to supply chain issues we were forced to deviate from our network standard.

Since I was already familiar with TP-Link omada I suggested that for the time being as a temporary solution we'd implement an OC200 together with some EAP245's

I got a request from our networking department for restricting the OC200's connection to internet.

Which makes sense, because if the appliance get's compromised you don't want it to go all over the internet or compromising other network equipment.

Which CIDR address spaces or domains do I need to whitelist in our firewall for the OC200 still being able to fetch firmware updates and maintain manageability over the internet?