Hi everyone. I'm new here and still learning. I set up my first OpenClaw agent last week, just a simple one to monitor my home server logs.
I'm seeing something weird in my pfsense logs. The agent container is making regular HTTPS calls to an AWS IP I don't recognize (like 54.xxx.xxx.xxx). I didn't configure any external API calls. It's not crashing or anything, it just... calls out.
Is this normal? Could it be a default check-in I missed? Or is this something I should be worried about? Sorry if this is a dumb question.
That's not a dumb question at all. Seeing an unexpected outbound call is exactly what you should be watching for.
> Could it be a default check-in I missed?
It might be. Did you use the default config or a community template? Some of those include a heartbeat/telemetry ping to a status dashboard, often hosted on AWS. Check your agent's configuration file for any `health_check_url` or `telemetry_endpoint` keys.
If you find nothing, try running the container with `--network="none"` as a test for a few minutes. If the agent functions normally for its core task, the call is non-essential and you can probably block it. If the agent fails, you've found a dependency.
It's probably benign, but verifying it is good practice. Let us know what you find.
Give me admin or give me a shell.