Sodium Agent: Which ports
-
Which port does the Sodium agent use? I installed on a test Ubuntu server and nothing is reporting in so I'm assuming I may have to open up a firewall port. Is there a target domain or IP that I can limit it to?
-
Outbound 4505 and 4506.
-
It's an agent, no firewall configs needed.
-
@scottalanmiller said in Sodium Agent: Which ports:
It's an agent, no firewall configs needed.
Since it isn't reporting into the dashboard and is unavailable in the "Available Agents" window, I figured it's possible it's communicating on a port other than 80 or 443. Have you successfully added agents and seen it work?
-
@nashbrydges said in Sodium Agent: Which ports:
@scottalanmiller said in Sodium Agent: Which ports:
It's an agent, no firewall configs needed.
Since it isn't reporting into the dashboard and is unavailable in the "Available Agents" window, I figured it's possible it's communicating on a port other than 80 or 443. Have you successfully added agents and seen it work?
There are well over 60 machines currently communicating with our server.
-
Outbound 4505 and 4506.
-
@quixoticjeremy Here is the process I followed...
- sudo -i to run from root
- downloaded Ubuntu agent file to server
- chmod +x installCS.sh
- ./installCS.sh
* INFO: Running install_ubuntu_stable_post() * INFO: Running install_ubuntu_check_services() * INFO: Running install_ubuntu_restart_daemons() * INFO: Running daemons_running() * INFO: Salt installed!Have I missed anything? Nothing is being reported back to the Dashboard sadly.
-
@nashbrydges said in Sodium Agent: Which ports:
@quixoticjeremy Here is the process I followed...
- sudo -i to run from root
- downloaded Ubuntu agent file to server
- chmod +x installCS.sh
- ./installCS.sh
* INFO: Running install_ubuntu_stable_post() * INFO: Running install_ubuntu_check_services() * INFO: Running install_ubuntu_restart_daemons() * INFO: Running daemons_running() * INFO: Salt installed!Have I missed anything? Nothing is being reported back to the Dashboard sadly.
That looks good to me so far. Let me check our side to see if we've gotten a key request etc.
-
@scottalanmiller said in Sodium Agent: Which ports:
It's an agent, no firewall configs needed.
Not true becaus some people block all outbound but 443/80.
-
-
@jaredbusch said in Sodium Agent: Which ports:
@scottalanmiller said in Sodium Agent: Which ports:
Outbound 4505 and 4506.
There you go.
That'w what I needed. Jeremy has confirmed the agent is talking to the server now that I've allowed those ports outbound.
Thanks @JaredBusch
-
@QuixoticJeremy Is the agent communication encrypted?
-
@nashbrydges said in Sodium Agent: Which ports:
@QuixoticJeremy Is the agent communication encrypted?
Yes, AES for payload encryption.
-
That's correct. We encrypt on both authentication and on payload. We should make an FAQ page about that. Another item for the task list
-
@quixoticjustin said in Sodium Agent: Which ports:
That's correct. We encrypt on both authentication and on payload. We should make an FAQ page about that. Another item for the task list
So many things to do, so little time.
-
@quixoticjeremy said in Sodium Agent: Which ports:
@quixoticjustin said in Sodium Agent: Which ports:
That's correct. We encrypt on both authentication and on payload. We should make an FAQ page about that. Another item for the task list
So many things to do, so little time.
Yeah, the task list is just getting longer and longer.
Speaking of which, have you been watching your burn down list grow? haha
-
@quixoticjustin said in Sodium Agent: Which ports:
@quixoticjeremy said in Sodium Agent: Which ports:
@quixoticjustin said in Sodium Agent: Which ports:
That's correct. We encrypt on both authentication and on payload. We should make an FAQ page about that. Another item for the task list
So many things to do, so little time.
Yeah, the task list is just getting longer and longer.
Speaking of which, have you been watching your burn down list grow? haha
Yep........
-
@quixoticjustin said in Sodium Agent: Which ports:
@quixoticjeremy said in Sodium Agent: Which ports:
@quixoticjustin said in Sodium Agent: Which ports:
That's correct. We encrypt on both authentication and on payload. We should make an FAQ page about that. Another item for the task list
So many things to do, so little time.
Yeah, the task list is just getting longer and longer.
Speaking of which, have you been watching your burn down list grow? haha
But let's face it, my list of work is ALWAYS massive. (which is a good thing)
