6 Replies Latest reply on Aug 25, 2012 1:56 PM by hrengifo

    Sensor and Manager communication problem

    prasunthapa

      I have M-2850 sensor and Manager version 7.1 . They are both on same subnet and connected directly to each other.

      Configured with same name and shared secret key from CLI on sensor and also from manager but are not communicating.

      What might be the problem.

        • 1. Re: Sensor and Manager communication problem

          Can you ping NSM Manager from Sensor CLI? Do you have right subnet configured. Can you verify?

          • 2. Re: Sensor and Manager communication problem
            prasunthapa

            Yes i can ping nsm manager from sensor and also sensor from manager. 172.16.100.0/32  .But the trust is not established.

            • 3. Re: Sensor and Manager communication problem
              hemang soni

              I think you have not yet push the sig set to sensor, please check on you home page if it is showing "update required"?

               

              if is showing update required click on "update required" link and it will redirect you to sig set push page from there select update and sig set will be pushed.

               

              One sig set push is started ... run downloadstatus command on sensor and check if download is started... after download is finish sensor will be able to intialized....

               

              As sensor can not initialized un till you download signature set ....

               

              If issue is not solved please collect sensor trace log and open case with McAfee tech support....

               

              Regards,

              Hemang.

              • 4. Re: Sensor and Manager communication problem
                hemang soni

                Also check if ports from NSM to sensor are working...

                 

                McAfee recommends that you use the Sensor and Manager management port on the same internal network for security and management reasons.

                The following ports are used are on the Network Security Manager server:

                 

                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                

                           

                PORT

                           
                           

                DESCRIPTION

                           
                           

                COMMENTS

                           
                           

                80

                           
                           

                HTTP Port

                           
                           

                Client to Manager: Webstart/JNLP, Console applets

                           
                           

                443

                           
                           

                HTTPS

                           
                           

                Client to Manager

                           
                           

                3306

                           
                           

                MySQL DB

                           
                           

                Internal to Manager; can be used externally to connect to the database

                           
                4167Command Channel (UDP)Manager to Sensor Communication
                           

                8007

                           
                           

                Tomcat AJP 12 Port

                           
                           

                Internal to Manager

                           
                           

                8009

                           
                           

                Tomcat AJP 13 Port

                           
                           

                Internal to Manager

                           
                           

                8500

                           
                           

                Command Channel (UDP)

                           
                           

                Manager to Sensor Communication

                           
                           

                8501

                           
                           

                Install Port (TCP)

                           
                           

                Sensor to Manager Communication

                           
                           

                8502

                           
                           

                Alert Channel (Control Channel) (TCP)

                           
                           

                Sensor to Manager Communication

                           
                           

                8503

                           
                           

                Packet Log Channel (TCP)

                           
                           

                Sensor to Manager Communication

                           
                           

                8504

                           
                           

                File Transfer Channel (TCP)

                           
                           

                Sensor to Manager Communication

                           
                           

                8551

                           
                           

                Lumos Nameserver

                           
                           

                Internal to Manager (RMI/IIOP)

                           
                           

                8552

                           
                           

                JONAS Nameserver

                           
                           

                Internal to Manager (RMI)

                           
                           

                8555

                           
                           

                Alert Viewer (TCP)

                           

                Client to Manager SSL/TCP/IP

                • 5. Re: Sensor and Manager communication problem
                  prasunthapa

                  Since no port has been blocked . So i don't think this is issue of port. I found that sensor software version is 5 and i am running manager of version 7.1.

                  Is this the ISSUE?

                  If yes can i upgrade directly to 7.1 sensor version or not .

                  • 6. Re: Sensor and Manager communication problem
                    hrengifo

                    At the beginning you say you have the sensor and manager at 7.1. Later you said the sensor was at 5 You have have heterogeneus environments but as mentioned on the platform upgrade doc:

                    Heterogeneous environments are supported only across two successive major versions. For

                    example, a 6.0 Manager can manage Sensors on 5.1.x.x and 6.0.x.x but not Sensors on 4.1.x.x.

                    Similarly, Central Manager 6.0 can manage 6.0 and 5.1 Managers but not 4.1 Managers.

                    So your sensor can never trail 2 "major" versions. I did not find anything exclusive to 7.0 but your 7 manager can manage 7 and 6 versions but not 5.