Configuration changes aren't applied to McAfee Agent through a Cisco firewall
Last Modified: 2023-06-07 06:18:53 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Configuration changes aren't applied to McAfee Agent through a Cisco firewall
Technical Articles ID:
KB72227
Last Modified: 2023-06-07 06:18:53 Etc/GMT EnvironmentePolicy Orchestrator (ePO) 5.x
McAfee Agent (MA) 5.x Cisco firewall or Cisco firewall module Problem
Communication between ePO and MAs is disrupted when a Cisco firewall exists between the ePO server and MAs. Though it seems like the agents are communicating, configuration changes aren't applied and tasks aren't propagated to the agents. If this issue occurs, communication disruption occurs only with traffic that flows through the Cisco firewall. Communication that doesn't flow through the Cisco firewall isn't affected. The CauseCisco firewall is inspecting traffic between the ePO server and the agents:
The Cisco firewall detects the
Solution 1Enable SSL for the ASCI.
Solution 2Change the default ASCI port from 80 to a dedicated port that's not used by any well-known protocol.
WorkaroundDisable HTTP packet inspection on the Cisco firewall.
Affected ProductsLanguages:This article is available in the following languages: |
|