Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 1 subscriber
  • Views 2877 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SEC not talking properly to DMZ server?

Lewej

Hi

I use Sophos Endpoint and Security v9.5 and SEC v4.0.2.2370, with W2003 servers and Vista clients.

All works well, apart from 1 web server in our DMZ. The DMZ server says it is happy, and gets updates as it should, and runs it automated scan at night.

However SEC show a yellow ! against that server, and says it Differs from Policy, and shows no details against that particular server. I cannot seem to get SEC to update the policy, even though it appears to be all working on the DMZ server.

We have allowed TCP and UPD port 8192-8194 through our firewall to the DMZ.

Do I need to allow another port or aynthing?

Thanks in Advance

:13807


This thread was automatically locked due to age.
  • 0

    Hi,

    The "client" machine needs to be able to connect to TCP 8192 and TCP 8194 on the management server or upstream message realy.  No UDP required.  You don't technically need to open port 8194 TCP on the "client" as the client will poll for messages anyway.  If you can open TCP 8194 on the client that will enable the "client" to be sent messages without having to wait for the "client" to check for them.

    The Router log of the client will probably be the most use in diagnosing the problem.

    /search?q= 13771

    is also worth a read as it has a couple of checks to perform.

    Regards,

    Jak
     

    :13815
  • 0

    Hi Jak

    Thanks for the respone. i am a bit concerned as the linked article talks about services, folders and registry key that just do not appear on our client machine.

    It is a 32 bit system.

    Confused .com

    TIA

     
    :13823
  • 0

    In that case, does the machine have the Remote Management System (RMS) component installed?

    It should appear in add/remove programs (appwiz.cpl ) as:
    "Sophos Remote Management System ".

    All the clients should have this installed if they are to appear as managed in SEC.

    If the machine doesn't have it, I would suggest re-bootstrapping the machine by running setup.exe from the central installation directory or issuing a re-protect from SEC.

    Regards,

    Jak 

    :13829
  • 0

    Hi Jak

    Sorry for the delay in replying - I ahd issues trying to log on to forum.

    I did try and re-install, but no SEC instance gets loaded. Anyway i can force this on?

    Many Thanks

    :14747
  • 0

    Hello Lewej,

    I fear I don't quite understand what you mean by no SEC instance gets loaded . You did re-install on the DMZ server by running setup.exe from the CID (i.e. \\yourSECserver\SophosUpdate\CIDs\Snnn\) or by some other means? Did it succeed or did you encounter an error? 

    Do you mean that there is no Sophos icon in the taskbar and/or no Sophos component under Add/Remove programs?

    Christian

    :14761
  • 0

    Hi Christian

    So sorry. Typo!!  Please ignore the SEC comment (and I can see how confusing it was.)

    i meant there is no RM instance after reloading on the server. I imagine this is the updating issue. Not sure how to get it on there!!

    Many Thanks

    :14801
  • 0
    I assume you installed "just" the client component. There should be an RMS Install log in %windir%\temp (if you installed manually logs can also be in the user's temp directory.

    Christian
    :14813