Running Sophos Enterprise Console over MPLS.

Question

I am trying to run Sophos Enterprise Console over an MPLS with trusted domains. My local domain test.com, domain connecting to is test-inc.com. I have test.com domain enterprise credentials as well as test-inc.com domain enterprise credentials. MPLS is an open network connection so there are no firewall blockage for ports 8192 and 8194. Support insist on these ports being blocked or task not running. I have verified both (run telnet test on both ports and mmc-ed into PCs to make sure services are running. Still… not able to push client out to users. Remoting into PC and running bootstrap install works and communicated fine. This is happening across the board for all PCs. Even desktops that I have flushed DNS and set a static IP on. I have over 100 PCs I am going to push this client out to. Any other ideas on what I can do to troubleshoot?

Error code: 0000002e

This thread was automatically locked due to age.

funkytechmonkey · Accepted Answer

For future reference….. Here is what the problem was and what we did to resolve this issue.

Problem:

Sophos was unable to install client on trusted domain across a MPLS connection. Error code 0000002e

We figured out the Sophos server was not able to communicate with the remote computer without using the fully qualified domain name (example: testcomputer.test.com) We modified the host file on the Sophos server for testing purposes to find out that was the issue.

Resolution:

In the advanced TCP/IP settings of the Sophos server –

• Add IP for trusted domain’’’’s DC in “DNS server addresses”

• Added trusted domain name to the “Append these DNS suffixes”

• Add Local Domain to “DNS suffix for this computer”

This resolved my issue. Here is a screenshot