Hi all,
I have 6 servers in my organisation. I have two network ranges, 10.1.0.0 is the office network and 10.1.1.0 is a backbone network for server traffic only.
5 of my servers are connected to both networks but one, which is solely a backup staging server is just on the backbone network.
My KAV Admin Kit, which is installed on one of the 5 servers on both networks, has picked up all the PC's and servers on my network using their 10.1.0.0 network address with the exception of this 'backup' server which its picked up the 10.1.1.0 network address, as this is the only one it has.
The Admin Kit successfully deployed the Network Agent (v6.0.1572) and then KAV FileSecure 6.0 but since this it has failed to see the server.
It appears in my server list greyed out (not visible) and every time I try to Sync it it fails.
This only happens with this server and I assume its because of the network address difference (even though the properties of the server have the correct 10.1.1.0 address associated).
Has anyone any idea why I cant see this server no matter what I do (rebooted with no luck)?
Many thanks
Andrew
Full Version: Multi-network protection using KAV FS 6.0 & Admin Kit
Hello,
so you were able to deploy Network Agent via RPC but you cannot synchronize that host...mmmm....have you tried to troubleshoot NetAgent connection versus AK server by means of klnagchk.exe utility? You can find it on that client within NA's installation folder: you can simply run it from command line and it will output all the connection details...it might be helpful!
Is there any firewall up and running on that server? Pls bear in mind that NA is listening on 15000 UDP port (incoming connections of course)....
Is the routing between (direction host -> AK server) those hosts correct?
Bye
M.
so you were able to deploy Network Agent via RPC but you cannot synchronize that host...mmmm....have you tried to troubleshoot NetAgent connection versus AK server by means of klnagchk.exe utility? You can find it on that client within NA's installation folder: you can simply run it from command line and it will output all the connection details...it might be helpful!
Is there any firewall up and running on that server? Pls bear in mind that NA is listening on 15000 UDP port (incoming connections of course)....
Is the routing between (direction host -> AK server) those hosts correct?
Bye
M.
Hi Mastropizza,
thanks for the suggestions and the handy tip about klnagchk.exe.
There is no firewall on either of the servers, they are both connected directly to the same gigabit switch via a Cat5e patch lead at 1000mbps (1gbps) speeds. They are both in the same subnet with no routing involved.
The output of klnagchk.exe definitely indicates a problem. It is shown below.
C:\Program Files\Kaspersky Lab\NetworkAgent>klnagchk.exe
Starting utility 'klnagchk'...
Checking command line options...OK
Initializing basic libraries...OK
Current host is SYNERGIX\STOR02
Reading the settings...OK
Settings verification...OK
Network Agent settings:
Administration Server address: '10.1.0.2'
Use SSL connection: 1
Numbers of the Administration server SSL ports: '13000'
Numbers of the Administration server ports: '14000'
Administration Server certificate: available
Use proxy server: 0
Open UDP port: 1
Numbers of UDP ports: '15000'
Synchronization period, min.: 15
Connection timeout, sec.: 30
Send/receive timeout, sec.: 180
Attempt to connect to the Administration server...Transport level error in proce
ss of communication with 'http://10.1.0.2:13000': timeout period is expired
Full error information:
Transport level error in process of communication with 'http://10.1.0.2:13000':
timeout period is expired
Error information: 1255/0 (Error was occured in trasnport layer. Error code - '0
'.), O:\CS AdminKit\development2\transport\trf\socket\transfersocket.cpp, 435
Attempt to connect to the Network Agent...OK
Administration Agent is running
Receiving the Network Agent's statistical data...OK
Network Agent's statistical data:
Total number of synchronization requests: 0
The number of successful synchronization requests: 0
Total number of synchronizations: 0
The number of successful syncrhonizations: 0
Date/time of the last request for synchronization:
Deinitializing basic libraries...OK
C:\Program Files\Kaspersky Lab\NetworkAgent>
Does this give anyone any idea's about the problem?
Many thanks for all help offered.
Andrew
thanks for the suggestions and the handy tip about klnagchk.exe.
There is no firewall on either of the servers, they are both connected directly to the same gigabit switch via a Cat5e patch lead at 1000mbps (1gbps) speeds. They are both in the same subnet with no routing involved.
The output of klnagchk.exe definitely indicates a problem. It is shown below.
C:\Program Files\Kaspersky Lab\NetworkAgent>klnagchk.exe
Starting utility 'klnagchk'...
Checking command line options...OK
Initializing basic libraries...OK
Current host is SYNERGIX\STOR02
Reading the settings...OK
Settings verification...OK
Network Agent settings:
Administration Server address: '10.1.0.2'
Use SSL connection: 1
Numbers of the Administration server SSL ports: '13000'
Numbers of the Administration server ports: '14000'
Administration Server certificate: available
Use proxy server: 0
Open UDP port: 1
Numbers of UDP ports: '15000'
Synchronization period, min.: 15
Connection timeout, sec.: 30
Send/receive timeout, sec.: 180
Attempt to connect to the Administration server...Transport level error in proce
ss of communication with 'http://10.1.0.2:13000': timeout period is expired
Full error information:
Transport level error in process of communication with 'http://10.1.0.2:13000':
timeout period is expired
Error information: 1255/0 (Error was occured in trasnport layer. Error code - '0
'.), O:\CS AdminKit\development2\transport\trf\socket\transfersocket.cpp, 435
Attempt to connect to the Network Agent...OK
Administration Agent is running
Receiving the Network Agent's statistical data...OK
Network Agent's statistical data:
Total number of synchronization requests: 0
The number of successful synchronization requests: 0
Total number of synchronizations: 0
The number of successful syncrhonizations: 0
Date/time of the last request for synchronization:
Deinitializing basic libraries...OK
C:\Program Files\Kaspersky Lab\NetworkAgent>
Does this give anyone any idea's about the problem?
Many thanks for all help offered.
Andrew
Hello Andrew,
those machines (AK Server and "client" server) are not in the same net range.....are you working with WLAN or are these net ranges "connected"/routed via firewall or router?
Are you able to ping AK Server from client server?
M.
those machines (AK Server and "client" server) are not in the same net range.....are you working with WLAN or are these net ranges "connected"/routed via firewall or router?
Are you able to ping AK Server from client server?
M.
Hi mastropizza,
well spotted. I did pick up on the fact that the KAV client seems to have the IP 10.1.0.2 for the AK server. The AK server has two NIC's, one with IP 10.1.0.2/24 and the other with 10.1.1.2/24, so as you can see, it is on the same network as the KAV client.
Am I able to setup multiple NIC's in the AK or can I manually configure the AK IP on the KAV client? This is the only server and/or client which wont be on the 10.1.0.0/24 network so I am not worried about this being a problem in the future.
Many thanks for your help
Andrew
well spotted. I did pick up on the fact that the KAV client seems to have the IP 10.1.0.2 for the AK server. The AK server has two NIC's, one with IP 10.1.0.2/24 and the other with 10.1.1.2/24, so as you can see, it is on the same network as the KAV client.
Am I able to setup multiple NIC's in the AK or can I manually configure the AK IP on the KAV client? This is the only server and/or client which wont be on the 10.1.0.0/24 network so I am not worried about this being a problem in the future.
Many thanks for your help
Andrew
QUOTE(Andrew McHale @ 8.04.2008 10:05) 
Hi mastropizza,
well spotted. I did pick up on the fact that the KAV client seems to have the IP 10.1.0.2 for the AK server. The AK server has two NIC's, one with IP 10.1.0.2/24 and the other with 10.1.1.2/24, so as you can see, it is on the same network as the KAV client.
Am I able to setup multiple NIC's in the AK or can I manually configure the AK IP on the KAV client? This is the only server and/or client which wont be on the 10.1.0.0/24 network so I am not worried about this being a problem in the future.
Many thanks for your help
Andrew
well spotted. I did pick up on the fact that the KAV client seems to have the IP 10.1.0.2 for the AK server. The AK server has two NIC's, one with IP 10.1.0.2/24 and the other with 10.1.1.2/24, so as you can see, it is on the same network as the KAV client.
Am I able to setup multiple NIC's in the AK or can I manually configure the AK IP on the KAV client? This is the only server and/or client which wont be on the 10.1.0.0/24 network so I am not worried about this being a problem in the future.
Many thanks for your help
Andrew
Hi,
the best thing to do is to modify Net Agent IP setting: from the same NA's installation folder mentioned before, run
klmover -address 10.1.1.2
from command line.
Bye
M.
Hi mastropizza,
FANTASTIC! Thats sorted it. Great stuff, thank you very much!
Andrew
FANTASTIC! Thats sorted it. Great stuff, thank you very much!
Andrew
You're welcome, Andrew.
M
M
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.