NAT-ed central computer returns an incorrect original IP to the Unix agent (NETIQKB49722)

  • 7749722
  • 02-Feb-2007
  • 10-Oct-2007

Resolution

fact
VigilEnt Security Agent for Unix 5.0

fact
Security Manager 5.1

fact
Security Manager 5.1 SP1

symptom
NAT-ed central computer returns an incorrect original IP to the Unix agent

symptom
Log Manager data not returned from the Unix agent to Security Manager in a NAT-based firewall environment

symptom
Central computer behind a firewall that uses Network Address Translation provides the wrong IP address

fix

VigilEnt Security Agent for Unix version 5.0.1.13 Hotfix 49722

Hotfix 49722 corrects an issue that occurs when a firewall using Network Address Translation (NAT) is between a Security Manager central computer and the VigilEnt Security Agent for Unix (Unix agent). Due to a change in the Security Manager Log Manager component, Log Manager sends an incorrect IP address to the Unix agent when establishing communication.  As a result, the Unix agent cannot find the Security Manager central computer.

Hotfix 49722 modifies the following file on the Unix agent computer. This file is located by default in the vsau/bin/ folder:

vsau/bin/uvservd

Note: This hotfix requires VigilEnt Security Agent for Unix 5.0 Service Pack 1. 

To install this hotfix:

  1. Download the hotfix from the NetIQ Support site at https://www.netiq.com/support/vsm/extended/hotfixes.asp?version=500&productID=VMU#1370.
  2. Start Unix Manager. For more information, see the Unix Agent Installation and Configuration Guide.
  3. Click Manage Agents.
  4. Click Scan All Hosts to verify all agents are active and registered.
  5. On the Hosts menu, click Patch Manager.
  6. Click Load and select the p501p13.zip file .
  7. Select the hosts to which you want to apply this hotfix.
  8. Select 5.0.1.13.
  9. Click Apply. For more information, contact Technical Support at www.netiq.com/support.


Additional Information

Formerly known as NETIQKB49722