New DMZ Relay - PumpSockets read error with client when attempting to register client

jwgibson949 · May 4, 2018, 1:57am

DMZ Relay Public address uses fqdn. and the name overide is set to that and ping is blocked.

The DMZ relay intranet relay connection is the IP address of the Bigfix server currently due to DNS issues.

When the client is installed and trying to register the_RelayServer1 is set to the DMZ Relay. You can see the client is recieves a echo reply from the IP address of the FQDN an attempts to select the FQDN (removed the .xxxxx of the client address) and attempts to register. However in the debug log file or the relay below, I am recieving the following for the two clients that I am trying to register.

PumpSockets read error with client – 72.219.161.92: Socket Error: Windows Error 0x2746%: An existing connection was forcibly closed by the remote host.

Debug log file of client

Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelaySelectLog: Pinging 8.41.93.27 at TTL 18
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelaySelectLog: Received echo reply from 8.41.93.27 at distance 15
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelaySelectLog: Selecting 8.41.93.27:52311 at 12-15
Thu, 03 May 2018 18:40:06 -0700 Relay Selection: Attempt to select BF1.xxxxx.com:52311
Thu, 03 May 2018 18:40:06 -0700 Relay Selection: Attempting to register with parent. http://BF1.xxxxx.com:52311/cgi-bin/bfenterprise/clientregister.exe
Thu, 03 May 2018 18:40:06 -0700 Relay Selection: Attempt to register with http://BF1.xxxxx.com:52311/cgi-bin/bfenterprise/clientregister.exe
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() entering, input = (mac address of it as string & “" & cidr string of it & "” & address of it as string & “_0,”) of ipv4 interfaces whose ( up of it and exists mac address of it and length of mac address of it = 17 and exists cidr string of it and exists address of it ) of network
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() evaluating the expression
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() exiting.
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() entering, input = (mac address of it as string & “^” & cidr address of it & “0,") of ipv6 interfaces whose ( exists mac address of it and length of mac address of it = 17 and exists cidr address of it ) of adapters whose ( up of it ) of network
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() evaluating the expression
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() exiting.
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() entering, input = concatenation "” of elements of set of mac addresses of ipv4or6 interfaces whose ( exists mac address of it and length of mac address of it = 17 ) of adapters of network
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() evaluating the expression
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() exiting.
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() entering, input = info of client
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() evaluating the expression
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() exiting.
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() entering, input = virtual of hardware
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() evaluating the expression
Thu, 03 May 2018 18:40:06 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() exiting.
Thu, 03 May 2018 18:40:06 -0700 Relay Selection: Adding client identification headers to the registration request
Thu, 03 May 2018 18:40:06 -0700 DebugMessage RegisterOnce: Attempting secure registration with 'https://BF1.xxxxx.com:52311/cgi-bin/bfenterprise/clientregister.exe?RequestType=RegisterMe&ClientVersion=9.5.8.38&Body=0&SequenceNumber=64&MinRelayVersion=7.1.1.0&CanHandleMVPings=1&MinHops=12&MaxHops=15&Root=http://E-BigFix-01.xxxxx.com%3A52311&AdapterInfo=3c-97-0e-b9-cf-f6_192.168.1.0%2F24_192.168.1.182_0&AdapterInfo=00-50-56-c0-00-01_192.168.1.0%2F24_192.168.1.1_0&AdapterIpv6=3c-97-0e-b9-cf-f6^2600%3A8802%3A4400%3A68%3A1c52%3Abc14%3A4322%3A477a%2F64_0&AdapterIpv6=3c-97-0e-b9-cf-f6^fe80%3A%3A1c52%3Abc14%3A4322%3A477a%2F64_0&AdapterIpv6=00-50-56-c0-00-01^fe80%3A%3Ac13d%3A402a%3Acb5e%3Acce5%2F64_0’
Thu, 03 May 2018 18:40:07 -0700 DebugMessage RegisterOnce: Relay does not support secure registration.
Thu, 03 May 2018 18:40:07 -0700 DebugMessage RegisterOnce: Current deployment ‘x-bes-minimum-supported-relay-level’ masthead setting does not allow clear text registration.
Thu, 03 May 2018 18:40:07 -0700 Relay Selection: Failed registration attempt

Debug log file of relay
Thu, 03 May 2018 21:02:21 -0400 - 5752 - PumpSockets read error with client – 72.219.161.92: Socket Error: Windows Error 0x2746%: An existing connection was forcibly closed by the remote host.

JasonWalker · May 4, 2018, 5:14am

From the client’s last three log messages, it looks like you have configured an Authenticating Relay, but the client has never registered and does not have a certificate for authenticating itself to your relay. Have a read through at https://www.ibm.com/support/knowledgecenter/SS6MCG_9.2.0/com.ibm.tivoli.tem.doc_9.2/Platform/Console/Client-Relay-ServerAuthentication.html and see whether it helps.

jwgibson949 · May 4, 2018, 1:41pm

Jason,

You were right the _BESRelay_Comm_Authenticating to 1 was set to that. I have changed it back as I had not set that. Restarted the relay and client service. Below is what happens in the relay debug file when my machine is attempting to register as that IP is from my Cox network. I get the Pumpsockets read error message. All attempts show that same message.

Is proper format for relay name override - “BF1.bbins.com” in the insert field?

Relay Debug log

Fri, 04 May 2018 09:23:03 -0400 - 2224 - PumpSockets read error with client – 4.31.179.226: Socket Error: Windows Error 0x2746%: An existing connection was forcibly closed by the remote host.
Fri, 04 May 2018 09:23:13 -0400 - PeriodicTasks (4936) - Entering POST http://E-BigFix-01.bbins.com:52311/relay-status
Fri, 04 May 2018 09:23:13 -0400 - PeriodicTasks (4936) - Enabling Host verification for connection with url https://E-BigFix-01.bbins.com:52311/relay-status
Fri, 04 May 2018 09:23:13 -0400 - PeriodicTasks (4936) - Exiting POST http://E-BigFix-01.bbins.com:52311/relay-status (53 ms)
Fri, 04 May 2018 09:23:14 -0400 - GatherMain (3908) - Entering GET http://E-BigFix-01.bbins.com:52311/bfmirror/downloads/ConnectivityTest
Fri, 04 May 2018 09:23:14 -0400 - GatherMain (3908) - Enabling Host verification for connection with url https://E-BigFix-01.bbins.com:52311/bfmirror/downloads/ConnectivityTest
Fri, 04 May 2018 09:23:14 -0400 - GatherMain (3908) - Exiting GET http://E-BigFix-01.bbins.com:52311/bfmirror/downloads/ConnectivityTest (20 ms)
Fri, 04 May 2018 09:23:14 -0400 - GatherMain (3908) - ConnectionRequest to http://E-BigFix-01.bbins.com:52311/bfmirror/downloads/ConnectivityTest. Response Headers are

From client log file after removing _BESRelay_Comm_Authenticating to 1

ri, 04 May 2018 06:30:20 -0700 VerboseMessage RelaySelectLog: Setting TTL to 20
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelaySelectLog: Sending pings
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelaySelectLog: Pinging 8.41.93.27 at TTL 20
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelaySelectLog: Received echo reply from 8.41.93.27 at distance 15
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelaySelectLog: Selecting 8.41.93.27:52311 at 12-15
Fri, 04 May 2018 06:30:20 -0700 Relay Selection: Attempt to select BF1.bbins.com:52311
Fri, 04 May 2018 06:30:20 -0700 Relay Selection: Attempting to register with parent. http://BF1.bbins.com:52311/cgi-bin/bfenterprise/clientregister.exe
Fri, 04 May 2018 06:30:20 -0700 Relay Selection: Attempt to register with http://BF1.bbins.com:52311/cgi-bin/bfenterprise/clientregister.exe
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() entering, input = (mac address of it as string & “" & cidr string of it & "” & address of it as string & “_0,”) of ipv4 interfaces whose ( up of it and exists mac address of it and length of mac address of it = 17 and exists cidr string of it and exists address of it ) of network
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() evaluating the expression
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() exiting.
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() entering, input = (mac address of it as string & “^” & cidr address of it & “0,") of ipv6 interfaces whose ( exists mac address of it and length of mac address of it = 17 and exists cidr address of it ) of adapters whose ( up of it ) of network
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() evaluating the expression
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() exiting.
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() entering, input = concatenation "” of elements of set of mac addresses of ipv4or6 interfaces whose ( exists mac address of it and length of mac address of it = 17 ) of adapters of network
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() evaluating the expression
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() exiting.
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() entering, input = info of client
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() evaluating the expression
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() exiting.
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() entering, input = virtual of hardware
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() evaluating the expression
Fri, 04 May 2018 06:30:20 -0700 VerboseMessage RelevanceSubstitution::EvaluateRelevanceAsString() exiting.
Fri, 04 May 2018 06:30:20 -0700 Relay Selection: Adding client identification headers to the registration request
Fri, 04 May 2018 06:30:20 -0700 DebugMessage RegisterOnce: Attempting secure registration with 'https://BF1.bbins.com:52311/cgi-bin/bfenterprise/clientregister.exe?RequestType=RegisterMe&ClientVersion=9.5.8.38&Body=0&SequenceNumber=308&MinRelayVersion=7.1.1.0&CanHandleMVPings=1&MinHops=12&MaxHops=15&Root=http://E-BigFix-01.bbins.com%3A52311&AdapterInfo=3c-97-0e-b9-cf-f6_192.168.1.0%2F24_192.168.1.182_0&AdapterInfo=00-50-56-c0-00-01_192.168.1.0%2F24_192.168.1.1_0&AdapterIpv6=3c-97-0e-b9-cf-f6^2600%3A8802%3A4400%3A68%3A1c52%3Abc14%3A4322%3A477a%2F64_0&AdapterIpv6=3c-97-0e-b9-cf-f6^fe80%3A%3A1c52%3Abc14%3A4322%3A477a%2F64_0&AdapterIpv6=00-50-56-c0-00-01^fe80%3A%3Ac13d%3A402a%3Acb5e%3Acce5%2F64_0’
Fri, 04 May 2018 06:30:21 -0700 DebugMessage RegisterOnce: Relay does not support secure registration.
Fri, 04 May 2018 06:30:21 -0700 DebugMessage RegisterOnce: Current deployment ‘x-bes-minimum-supported-relay-level’ masthead setting does not allow clear text registration.
Fri, 04 May 2018 06:30:21 -0700 Relay Selection: Failed registration attempt
Fri, 04 May 2018 06:32:21 -0700 Relay Selection: InnerRelaySelector SECONDARY).
Fri, 04 May 2018 06:34:21 -0700 Relay Selection: InnerRelaySelector MANUAL).
Fri, 04 May 2018 06:34:21 -0700 Relay Selection: InnerRelaySelector FAILOVER.
Fri, 04 May 2018 06:34:21 -0700 Relay Selection: InnerRelaySelector ROOT).
Fri, 04 May 2018 06:34:21 -0700 Relay Selection: Going direct.
Fri, 04 May 2018 06:34:21 -0700 Relay Selection: Attempting to register with parent. http://E-BigFix-01.bbins.com:52311/cgi-bin/bfenterprise/clientregister.exe
Fri, 04 May 2018 06:34:21 -0700 Relay Selection: Attempt to register with http://E-BigFix-01.bbins.com:52311/cgi-bin/bfenterprise/clientregister.exe

JasonWalker · May 4, 2018, 2:04pm

Looks like your masthead has been configured to require secure registration (using the BESAdminTool utility). I haven’t required this on my whole deployment, but I think you’ll need to check the link I posted earlier and try a manual key exchange between the client and relay.

jwgibson949 · May 4, 2018, 3:42pm

I checked the masthead and don’t see where there are any settings that would cause this. I have not enabled the encryption or the security and FiPs is not checked. I am using the same process for other relays in the corporate network and that is working with no problem.

bf1.bbins.com the correct format for adding to name override for the dns name?