I have a BigFix server/console on Windows 2008 Server running under a VMWARE guest. I don’t seem to be having issues getting BigFix clients on Windows systems to synch and communicate with it. I do seem to be having an issue with a RHEL 7 system where I have installed a BigFix client. I can ping the ip addresses successfully from each to each other. However, my BigFix log appears to indicate a synch failure and indicates that in the url it is for some reason replacing the hostname or ip address of my BigFix server with the loopback adapter 127.0.0.1. I’m not a networking expert, but I’m sensing that this is where the problem lies because it is not getting out of the RHEL environment due to the loopback.
Anyone ever face this issue or have any suggestions on how to deal with it?
Has the RHEL Server running a local firewall? I’ve seen similar behaviors before and most of them are because the OS firewall is enabled and it’s blocking the communication with the relay/BES.
Yes, it does run the firewall that comes with RHEL. I AM able to ping my BigFix server from this RHEL environment. Wouldn’t the firewall prevent that also? Do you happen to know where I can find documentation on what exactly must be set up in the firewall of a BigFix client/agent? Or do you happen to have specific knowledge of what must be set up?
Is the Red Hat system running a Relay as well, or only the client? If this host is a Relay that would explain the loopback addresses in the log file.
52311/tcp should be opened bidirectional between relays and the server, but is only needed outbound from the client to the relay or root server. 52311/udp inbound on the client from the relay/server is not required, but is very helpful for getting faster notifications of new content or actions (if the udp inbound cannot be enabled, look up the topics on “Command Polling” here in the forum.)
No relay. Can anyone possibly provide instructions on how to enable 52311 from the firewall that comes with RHEL? It’s not as simple as the Windows firewalls I’m used to dealing with. I have 52311 enable for what is called on the machine the “public zone”. But there are a whole host of other “zones” on the firewall.
Are you using the same masthead of the original installation of your BigFix Server?
It’s also possible the file got corrupted when moving to the server.