Find PCs with Windows VPN connection with set IP Address

(imported topic written by SystemAdmin)

I’m trying to create either a relevance or automatic group to collect all PCs with our current Windows VPN connections. We will need to target these PCs to install our new VPN solution on to them (Already sorted this one out). My issue is that the name of the connection could be different as many ServiceDesk staff have set them up manually and so consistency is not likely to exist beyond the target IP address.

So far I’ve found the below relevance will return the connection names but I need to find which of those connections point to the IP address XXX.XXX.XXX.XXX.

q: (names of it, guids of it, device names of it) of connections of network

A: Local Area Connection, {E6850511-609D-46A2-93F7-415525580DCC}, Intel® 82566DM-2 Gigabit Network Connection

A: SYNODVPN, {10EFCF97-B8CF-4105-BE7B-26467E35638C}, WAN Miniport (PPTP)

So does anyone know what I can use to find connections with a set IP address? I’m guessing its an EXISTS query but I don’t know what property to look for. Is there a way to make BigFix tell me a list of properties for an inspector?

Then I can do a “list” of connections of Network and have it tell me the property I need to find.

(imported comment written by SystemAdmin)

I looked through some Documentation I’ve downloaded from the site and found how to find out what properties there are for an inspector eg.

Q: properties whose ( it as string contains “connection”)

A: bank_connections of : integer

A: connections of : integer

A: inbound connections allowed of : boolean

A: outbound connections allowed of : boolean

A: connections of : connection

A: guid of : string

etc

But there are none to help return the target IP address of a VPN connection that isn’t active. Anyone have any thoughts on how to find VPN connections targeting a set IP address?

(imported comment written by MattBoyd)

WMI is the first thing that comes to mind… you should also see if you can find it in the registry.

(imported comment written by MattBoyd)

If this works, it will be much easier than trying to cut your way through the jungle of GUIDs in the registry and WMI:

(descriptions of it, addresses of it) of adapters of network

(imported comment written by SystemAdmin)

Nah that relevance only works for active connections and your VPN is typically only active if you’re working from home. We’re trying to capture all users with the VPN even if they are at work. Thanks for the WMI idea though. I’ll investigate that.

(imported comment written by BenKus)

This help?

http://forum.bigfix.com/viewtopic.php?pid=18035#p18035