Resolution
VigilEnt Security Agent for Unix 5.0
fact
Security Manager 5.1
fact
Security Manager 5.1 SP1
symptom
NAT-ed central computer returns an incorrect original IP to the Unix agent
symptom
Log Manager data not returned from the Unix agent to Security Manager in a NAT-based firewall environment
symptom
Central computer behind a firewall that uses Network Address Translation provides the wrong IP address
fix
VigilEnt Security Agent for Unix version 5.0.1.13 Hotfix 49722
Hotfix 49722 corrects an issue that occurs when a firewall using Network Address Translation (NAT) is between a Security Manager central computer and the VigilEnt Security Agent for Unix (Unix agent). Due to a change in the Security Manager Log Manager component, Log Manager sends an incorrect IP address to the Unix agent when establishing communication. As a result, the Unix agent cannot find the Security Manager central computer.
Hotfix 49722 modifies the following file on the Unix agent computer. This file is located by default in the vsau/bin/ folder:
vsau/bin/uvservd
Note: This hotfix requires VigilEnt Security Agent for Unix 5.0 Service Pack 1.
To install this hotfix:
- Download the hotfix from the NetIQ Support site at https://www.netiq.com/support/vsm/extended/hotfixes.asp?version=500&productID=VMU#1370.
- Start Unix Manager. For more information, see the Unix Agent Installation and Configuration Guide.
- Click Manage Agents.
- Click Scan All Hosts to verify all agents are active and registered.
- On the Hosts menu, click Patch Manager.
- Click Load and select the p501p13.zip file .
- Select the hosts to which you want to apply this hotfix.
- Select 5.0.1.13.
- Click Apply. For more information, contact Technical Support at www.netiq.com/support.