Since one cannot create an access-list with a domain (microsoft.com), I've been struggling with the task of creating an ACL to cover all ip addresses (CIDR networks) involved when a user wants to perform a Windows/Microsoft update from their desktop. Does anybody have a firm grasp on the ip ranges that I need to add to my access-list?
Running a Windows SUS/WUS box or a patch management server is not an option as this is a small network of only two PCs. They need to get their updates from Microsoft directly.
I'd appreciate any help with this as I'm really struggling to finish off my ACL and this is the last task. For those that want to know, I'm using a Cisco 837 running IOS 12.3.14.T7.
Thanks for the help!