Network Access Control

 View Only

  • 1.  Policy Manager Connected: NO on LAN Enforcer

    Posted Oct 19, 2012 08:45 AM

    As stated in the title, we have a LAN Enforcer showing as following:

    Enforcer# show status
    Enforcer Status:                ONLINE
    Policy Manager Connected:       NO
    Policy Manager:                 10.151.127.22 HTTP 8014
    Packets Received:               77719
    Packets Transmitted:            68600
    Packet Receive Failed:          0
    Packet Transfer Failed:         0
    Enforcer Health:                EXCELLENT
    Enforcer Uptime:                0 days 17:30:00
    Policy ID:                      18/10/2012  16:26:47

    Enforcer# show configure
    Please wait for a moment...

    Network Interface Setting:
    eth0      Link encap:Ethernet  HWaddr 00:E0:ED:1E:5C:38
              inet addr:10.151.127.24  Bcast:10.151.127.255  Mask:255.255.255.0
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              RX packets:78667 errors:0 dropped:0 overruns:0 frame:0
              TX packets:69249 errors:0 dropped:0 overruns:0 carrier:0
              collisions:0 txqueuelen:1000
              RX bytes:14898989 (14.2 MiB)  TX bytes:10874583 (10.3 MiB)

    lo        Link encap:Local Loopback
              inet addr:127.0.0.1  Mask:255.0.0.0
              UP LOOPBACK RUNNING  MTU:16436  Metric:1
              RX packets:8 errors:0 dropped:0 overruns:0 frame:0
              TX packets:8 errors:0 dropped:0 overruns:0 carrier:0
              collisions:0 txqueuelen:0
              RX bytes:726 (726.0 b)  TX bytes:726 (726.0 b)

    Route Table:
    Kernel IP routing table
    Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
    10.151.127.0     0.0.0.0         255.255.255.0   U     0      0        0 eth0
    0.0.0.0         10.151.127.254   0.0.0.0         UG    0      0        0 eth0

    DNS Setting:
    nameserver 10.150.1.2
    nameserver 10.150.2.2

    Policy Manager Settings:
    IP/Name:                  10.151.127.22
    Port:                     8014
    Protocol:                 HTTP
    Hash of Preshared Secret: B5066AAB000A2B5370E88C9D05B37990
    Preferred Group:          NAC-BLAH-B

    NTP: disabled
    Enforcer#
     

    On the SEPM, inside the scm-server-0.log we see many NullPointerException like this

    2012-10-18 22:46:44.793 THREAD 25 SEVERE: Unknown Exception in: com.sygate.scm.server.task.EnforcerCompilerTask
    java.lang.NullPointerException
        at com.sygate.scm.server.task.EnforcerCompilerTask.compileCommonProfile(EnforcerCompilerTask.java:953)
        at com.sygate.scm.server.task.EnforcerCompilerTask.compileProfile(EnforcerCompilerTask.java:310)
        at com.sygate.scm.server.task.EnforcerCompilerTask.run(EnforcerCompilerTask.java:251)
        at java.util.TimerThread.mainLoop(Timer.java:512)
        at java.util.TimerThread.run(Timer.java:462)

     

    What's wrong between them?

     



  • 2.  RE: Policy Manager Connected: NO on LAN Enforcer

    Posted Mar 06, 2013 06:10 AM

    Hi;

     

    Restart the enforcer and after that you can see it connected.

     

    If not you must look the logs in enforcer as well.