Getting BES to access the internet via a proxy server?

Usage and Config Platform
1

(imported topic written by SystemAdmin)

Hello,

I have installed BES v7.2.5.22 trial version and I am having issues with getting the server to communicate with the internet via our proxy server. The proxy server is an MS ISA server. When you start a web browser you are required to authenticate once and then can browse to multiple sites without authenticating again. I followed both KB articles:

http://support.bigfix.com/cgi-bin/kbdirect.pl?id=105

http://support.bigfix.com/cgi-bin/kbdirect.pl?id=231

but the BES server still tries to authenticate anonymously again the ISA server(according to the trace on the ISA server) and not with the userid and password that is in the registry. The security team are insistent on us authenticating against the proxy server and will not allow any exceptions.

Do the above KB articles still apply to v7.2.5.22?

Is there no place on the BES that we can simply fill in a username and password that the BES must use?

Regards

Pritesh

2

(imported comment written by BenKus)

Hi Pritesh,

Can you confirm that you:

  • set the URLMonAuthName / URLMonAuthPhrase settings
  • setup a local user to access the proxy and logged in that user as the root server service
  • stopped the gather service and set the _BESGather_Comm_UseDownloadService setting

Ben

3

(imported comment written by SystemAdmin)

Hi Ben,

I have gone through the steps again and can confirm that they have been done as suggested.

The following is from the end of the BESGather.log:

bin/bfgather/scmdisawin2k3?time=07sep15:11:39

Tue, 07 Sep 2010 15:11:42 +0200 - ERROR: 16: Gather failed - General transport failure.

: non-retryable error: transport error 12: windows reports ‘download’ failure\nhttp://esync.bigfix.com/cgi-bin/bfgather/scmreporting?time=07sep15:11:42

Tue, 07 Sep 2010 15:11:45 +0200 - ERROR: 14: Gather failed - General transport failure.

: non-retryable error: transport error 12: windows reports ‘download’ failure\nhttp://esync.bigfix.com/cgi-bin/bfgather/scmfdccwinxp?time=07sep15:11:45

Tue, 07 Sep 2010 15:11:48 +0200 - ERROR: 15: Gather failed - General transport failure.

: non-retryable error: transport error 12: windows reports ‘download’ failure\nhttp://esync.bigfix.com/cgi-bin/bfgather/scmfdccwinxpfire?time=07sep15:11:48

Tue, 07 Sep 2010 15:11:51 +0200 - ERROR: 12: Gather failed - General transport failure.

: non-retryable error: transport error 12: windows reports ‘download’ failure\nhttp://esync.bigfix.com/cgi-bin/bfgather/scmdisawinxp?time=07sep15:11:51

Tue, 07 Sep 2010 15:11:54 +0200 - ERROR: 13: Gather failed - General transport failure.

: non-retryable error: transport error 12: windows reports ‘download’ failure\nhttp://esync.bigfix.com/cgi-bin/bfgather/scmfdccie7?time=07sep15:11:54

Tue, 07 Sep 2010 15:33:09 +0200 - LogFileStatusUpdater: Reset.

Tue, 07 Sep 2010 15:35:09 +0200 - LogFileStatusUpdater: Reset.

and the download.log file:

http://esync.bigfix.com/cgi-bin/bfgather/bessupport

Tue, 07 Sep 2010 15:25:49 +0200 - (127.0.0.1) ForwardGet: (/cgi-bin/bfenterprise/ForwardGetPost.exe) Non-retryable Error: Transport error 12: Windows reports ‘Download’ failure

http://esync.bigfix.com/cgi-bin/bfgather/bessupport

Tue, 07 Sep 2010 15:26:50 +0200 - (127.0.0.1) ForwardGet: (/cgi-bin/bfenterprise/ForwardGetPost.exe) Non-retryable Error: Transport error 12: Windows reports ‘Download’ failure

http://esync.bigfix.com/cgi-bin/bfgather/bessupport

Tue, 07 Sep 2010 15:27:51 +0200 - (127.0.0.1) ForwardGet: (/cgi-bin/bfenterprise/ForwardGetPost.exe) Non-retryable Error: Transport error 12: Windows reports ‘Download’ failure

http://esync.bigfix.com/cgi-bin/bfgather/bessupport

Tue, 07 Sep 2010 15:28:52 +0200 - (127.0.0.1) ForwardGet: (/cgi-bin/bfenterprise/ForwardGetPost.exe) Non-retryable Error: Transport error 12: Windows reports ‘Download’ failure

http://esync.bigfix.com/cgi-bin/bfgather/bessupport

Tue, 07 Sep 2010 15:29:53 +0200 - (127.0.0.1) ForwardGet: (/cgi-bin/bfenterprise/ForwardGetPost.exe) Non-retryable Error: Transport error 12: Windows reports ‘Download’ failure

http://esync.bigfix.com/cgi-bin/bfgather/bessupport

Tue, 07 Sep 2010 15:32:56 +0200 - LogFileStatusUpdater: Abort Requested.

Tue, 07 Sep 2010 15:32:57 +0200 - TCPConnectionManager: Run Complete

Tue, 07 Sep 2010 15:32:57 +0200 - HTTPServer: Run Complete

Tue, 07 Sep 2010 15:32:57 +0200 - HTTPServer: Close

Tue, 07 Sep 2010 15:32:57 +0200 - TCPConnectionManager: Close

Tue, 07 Sep 2010 15:32:57 +0200 - HTTPProtocol: Close

Tue, 07 Sep 2010 15:32:57 +0200 - HTTPProtocol: Close Complete

Tue, 07 Sep 2010 15:32:57 +0200 - TCPConnectionManager: Close Complete

Tue, 07 Sep 2010 15:32:57 +0200 - HTTPServer: Close Complete

We connected this machine directly to the internet using a 3G connection just to test and the fixlets started downloading so the server is working. The problem is definitely is related to the BES server accessing the proxy?

Regards

Pritesh

4

(imported comment written by BenKus)

Hi Pritesh,

I am not sure… I agree that it sounds like it is the proxy interaction… You might want to contact support or your sales engineer to work on this further.

Ben