Hello, i have deployed BigFix to a new CentOS 8 server. It will not connect to BigFix. I have enabled port 52311 TCP and UDP and the BESClient service is running. Any thoughts? Also i am a total newbie to Linux.
How did you perform the client install? Did you use the Client Deployment Tool, or just run the RPM package?
If using the RPM, you also need to copy the masthead file.
I used the RPM and copied the masthead file. I renamed it to actionsite.afxm according to the bigfix installation instructions
THanks, i used those instructions
Ok, good. What’s showing in the client logs at /var/opt/BESCLient/__BESData/__Global/Logs ?
logs for the past 3 days. Im not sure how to open them in Linux
I am seeing this in the latest log file.
RegisterOnce: GetURL failed - General transport failure. - socket timeout error - registration url - http://XYZ:52311/cgi-bin/bfenterprise/clientregister.exe?RequestType=RegisterMe&ClientVersion=9.5.9.62&Body=0&SequenceNumber=631&MinRelayVersion=7.1.1.0&CanHandleMVPings=1&Root=http://XYZ%3A52311&AdapterInfo=00-50-56-a5-40-7e_10.32.206.0%2F24_10.32.206.48_0&AdapterInfo=52-54-00-92-6b-ae_192.168.122.0%2F24_192.168.122.1_0&AdapterIpv6=00-50-56-a5-40-7e^fe80%3A%3Aae89%3A5109%3Ac094%3Ac507%2F64_0
At 00:04:52 -0500 -
Beginning Relay Select
At 00:04:53 -0500 -
That implies the client is getting a timeout connecting to XYZ:52311. The name seems to be resolving, so that’s the first hurdle. I’d look to firewalls or routing issues.
You can try to connect to that address from a browser on the client, to verify.
I cannot connect. Also our primary BigFix server is on a management network so our clients connect to the relays. I the relay and bigfix server are listening on port 52311 but not my centos server. I configured the firewall for 52311 for TCP and UDP.
Ok, the client (by default) will try to contact the root server the first time it starts, before it knows a list of Relays to try.
If the client cannot reach the root server, you’ll need to use a clientsettings.config file, or update the client settings file manually to direct it to a local Relay instead.
In general, for Linux installs I strongly recommend using @jgstew’s script here https://github.com/jgstew/tools/blob/master/bash/install_bigfix.sh