Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 15910 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SATC install/config instructions?

Dave Watkins

Hi

 

I'm a little surprised I even have to ask this but is there any sort of install guide for SATC?

 

Google returns links back to these forums only with various other questions about it's setup, most about how you have to exclude it from STAS but no where can I find a process for actually installing it and configuring it. Simple things like does it need authentication configured on the firewall first? Can it be used without STAS?

 

Am I missing something really obvious?

 

Thanks



This thread was automatically locked due to age.
Parents
  • 0

    Dave,

    I can confirm no documentation to install SATC. I will try to write those steps:

    1. Download the SATC from XG Admin Interface under Authentication > Client Downloads (the tab is hidden under 3 dots)
    2. Install the SATC on all your Terminal Server where you wish to control users internet accesses
    3. During the installation you should put your XG LAN IP address in order that the SATC can point to the right XG appliance
    4. Once installed, after the reboot, make sure the service is automatically started and put the Account and IP that you want to exclude from SATC (Administrator for example, STAS IP, etc...)
    5. On XG, from console, add all the Terminal Servers IP (one by one) identified in step 2: system auth thin-client add citrix-ip x.x.x.x
    6. From Terminal server, check if the SATC is correctly installed using this guide: https://kb.cyberoam.com/default.asp?id=2371
    7. If the previous step the TCP and UDP components of CATCLSP are not registered with Winsock, try to disable UAC on the terminal server before the SATC installation and Anti-malware too.

    Regards

  • 0 in reply to lferrara

    Hi Luk

     

    Are the instructions on the Cyberroam article still relevent?

     

    I've done multiple installs on multiple systems now and none of them have a winsock entries, on top of that none of them even have a file called c:\windows\system32\catc.dll

     

    I've uninstalled AV and tried without that installed with no change. I can't uninstall VMWare Tools as all our VM's use the Paravirtual disk driver and uninstalling VMWare Tools removes that driver so the VM then won't boot.

     

    UAC is set to "Never Notify" which is as off as the slider will allow.

     

    Any ideas?

     

    Thanks

  • 0 in reply to Dave Watkins

    Dave, have a look at this thread:

    Regards

Reply Children
  • 0 in reply to lferrara

    Sadly no different. I'd tested with the UAC registry change on the original testing. The GPO changes had already been made. The Cyberroam Client doesn't appear to get any further, still no DLL in system32 and no winsock registration.

     

    I should mention that with both client versions I get users showing up on the firewall, just no traffic data (which is obviously derived from the winsock integration).

     

    These servers are 2012R2 and given we get users showing up in the live users view I think the issue is simply the Winsock integration..

     

    Thanks

    Dave

  • 0 in reply to Dave Watkins

    Thanks Dave.

    So, what is the output of these commands?

    netsh winsock show catalog

    tcpdump “port 6060 –xX(from XG Console).