How to use ePolicy Orchestrator in a DMZ or NAT environment
Last Modified: 2022-11-30 15:35:49 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
How to use ePolicy Orchestrator in a DMZ or NAT environment
Technical Articles ID:
KB59218
Last Modified: 2022-11-30 15:35:49 Etc/GMT EnvironmentePolicy Orchestrator (ePO) 5.x
SummaryThis article describes how to use ePO in a Demilitarized Zone (DMZ) or with Network Address Translation (NAT) in the environment.
ProblemTrellix Agent can't communicate with the ePO server in a DMZ or NAT environment. Two-way communications have been allowed between the ePO server and the DMZ server, but the Agent still does not communicate with the ePO server.
NOTE: McAfee Agent was rebranded to Trellix Agent in version 5.7.7. Solution 1
Agent-to-server communication is supported over NAT; but, Agent wake-up calls will not work over NAT. Recommendations:
For Trellix Agent 5.x, incoming connections to ePO/Agent Handlers occur on port 443 only in the DMZ. Other ports in use:
Solution 2This solution is an alternative if Solution 1 is unacceptable and the ePO server resides only on the internal network.
Make sure that the Hosts file on the DMZ Server includes a route to the IP address of the ePO server. Then modify the
Related InformationSee also the following NAT-related issues:
Affected ProductsLanguages:This article is available in the following languages: |
|