1 2 Previous Next 16 Replies Latest reply on Sep 14, 2012 9:29 AM by Karim Brown

    Add Server behind Proxy Server in BSA

    Karim Brown

      Hi,

      We have a new customer behind Firewall. We installed a Proxy server (Dante) and we will manage the systems via that proxy.

      I added the proxy to the BSA Console and I think it works.

      Wenn I open the infrastructure Manager => Proxy Servers => I ca see the Proxy server => rhigt klick on it and update proxy server status I can see this details:

      Name:IP.IP.IP.IP

      Description:Customer BL Proxy Server_Dante

      Host:Proxyname

      Port:1080

      User name:Proxyname

      Resolve host name:true

       

      Now, I will add a Target via that Proxy Server. How can I do it?

      Thank you

        • 1. Re: Add Server behind Proxy Server in BSA
          Karim Brown

          The BL Version is 8.2

          • 2. Re: Add Server behind Proxy Server in BSA

            Hi ibrkar

             

            You need to have a network routing rule defined that is based on the property values of the server.

             

            For example

            (??TARGET._CUSTOMER?? = CUST1) AND (??TARGET._DATACENTRE?? = CUST1_DC)

             

            When you import that server make sure that these properties are defined during the import and hence it will go via the network routing rule that mapps to your SOCKS proxy

            1 of 1 people found this helpful
            • 3. Re: Add Server behind Proxy Server in BSA
              Bill Robinson

              Or TARGET.IP_ADDRESS = …

              1 of 1 people found this helpful
              • 4. Re: Add Server behind Proxy Server in BSA
                Karim Brown

                Hi Scott,

                I set the properties:

                - NewCustomer = Customer

                - NewCustomer Network Rule = Customer1

                - Network Routing NewCustomer = Customer1 rule

                bevor adding the target but this error occures:

                Error in TLS protocol: Target-IP

                • 5. Re: Add Server behind Proxy Server in BSA
                  Karim Brown

                  Now I have a new error => connection refused.

                  must I install the NSH on the proxy server? or some thing else?

                  • 6. Re: Add Server behind Proxy Server in BSA
                    Bill Robinson

                    You should not need NSH on the proxy server.

                     

                    Can you post some screenshots of the routing rule setup?

                    • 7. Re: Add Server behind Proxy Server in BSA
                      Karim Brown

                      Hi Bill,

                      1) network routing rule configuration:

                      - General:

                      Name* = Customer1

                      - Rule Definition:

                          ??TARGET.CUSTOMER?? = "Cusomer1"   
                      AND   ??TARGET.IP_ADDRESS?? = "Target-IP-Adress"   

                      - Proxies

                      the Proxy Server is selected.

                      • 8. Re: Add Server behind Proxy Server in BSA

                        Check if you reaching the RSCD agent or not ? check the rscd.log

                         

                        check proxy logs.

                        • 9. Re: Add Server behind Proxy Server in BSA

                          Have you checked that your SOCKS server is working?

                          • 10. Re: Add Server behind Proxy Server in BSA
                            Bill Robinson

                            and on the intended target both CUSTOMER and IP_ADDRESS are set properly ?

                             

                            can you past in the entire 'connection refused' error message ?

                            • 11. Re: Add Server behind Proxy Server in BSA
                              Karim Brown

                              sorry for my late answer.

                              the output error is:

                              connection refused: Target-IP

                               

                              and this is the logfile output from the target:

                              09/10/12 21:12:22.262 WARN rscd -  Targetname 5384 SYSTEM (???): ???: Main: RSCD not licensed -- continuing but with limited command set
                              09/10/12 21:12:22.262 INFO rscd -  Targetname 4880 SYSTEM (???): ???: The following local user will be used by the agent for user privilege mapping: BladeLogicRSCD

                               

                              I will license the Agent and give you feed back

                              • 12. Re: Add Server behind Proxy Server in BSA
                                Karim Brown

                                Hi guys,

                                 

                                now I have managed to start DANTE proxy correctly, but there is still something wrong.

                                 

                                We are using port 1080 (App-Server to SOCKS) and 13791 (BladeLogic Agents)

                                 

                                ==>> It is unclear, why port 59077 should be used. <<==

                                 

                                Cheers !

                                 

                                 

                                 

                                 

                                =============================================

                                Error message:

                                "Error in TLS protocol x.x.x.x" ==> while trying to add new server via BladeLogic-Console throught socks proxy.

                                 

                                 

                                /etc/sockd.conf (simple, without any authentication rule, proxy has only 1 NIC on eth0)

                                ===========

                                logoutput: /var/log/sockd.log

                                debug: 9

                                timeout.io: 0

                                timeout.negotiate: 0

                                internal: eth0 port = 1080

                                external: eth0

                                 

                                #authentication methods

                                clientmethod: none

                                method: none

                                 

                                ## client access rules

                                client pass {

                                #       from: eth0 to: eth1

                                        from: eth0 to: eth0

                                } # address-range on internal nic.

                                 

                                client pass {

                                        from: 0.0.0.0/0 port 1-65535 to: 0.0.0.0/0

                                        log: connect error

                                }

                                 

                                pass {

                                        from: 0.0.0.0/0 to: 0.0.0.0/0 port = 13719

                                        proxyprotocol: socks_v5

                                        log: connect error

                                }

                                 

                                pass {

                                        from: 0.0.0.0/0 to: 0.0.0.0/0 port = 22

                                        proxyprotocol: socks_v5

                                        log: connect error

                                }

                                 

                                block {

                                        from: 0.0.0.0/0 to: 0.0.0.0/0

                                        log: connect error

                                }

                                 

                                ## server operation access rules

                                # block connections to localhost, or they will appear to come from the proxy.

                                block {

                                        from: 0.0.0.0/0 to: lo

                                        log: connect

                                }

                                 

                                ## Allow SOCKS server to connect to any host on port 13719 (BladeLogic agent port)

                                pass {

                                        from: 0.0.0.0/0 to: 0.0.0.0/0 port 13719-13719

                                }

                                 

                                block {

                                        from: 0.0.0.0/0 to: 0.0.0.0/0

                                        log: connect error

                                }

                                 

                                 

                                 

                                 

                                /var/log/sockd.log

                                =============

                                Sep 11 19:08:12 (1347383292.895692) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895705) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895717) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895730) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895742) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895756) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895768) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895781) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895793) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895806) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895818) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895831) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895843) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895857) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895869) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895882) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895894) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895919) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895932) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895945) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895958) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895971) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895983) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.895996) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896008) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896022) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896034) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896047) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896059) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896072) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896084) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896097) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896109) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896123) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896135) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896148) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896169) sockd[8576]: debug: post select returned 0 (no system error): nfds = 10, rset = 0xf09920 (), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896183) sockd[8576]: debug: pre select: nfds = 10, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf09d30 (9, ), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896234) sockd[8576]: debug: post select returned 1 (no system error): nfds = 10, rset = 0xf09920 (9, ), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0:0

                                Sep 11 19:08:12 (1347383292.896248) sockd[8576]: debug: recv_clientrequest(): client 1.1.1.1.59077, read so far: 4

                                Sep 11 19:08:12 (1347383292.896257) sockd[8576]: debug: socks_recvfrom(): socket 9, len 1, flags 0

                                Sep 11 19:08:12 (1347383292.896265) sockd[8576]: debug: socks_getfrombuffer(): s = 9, get up to 1 decoded byte from read buffer that currently has 0 decoded, 0 encoded

                                Sep 11 19:08:12 (1347383292.896274) sockd[8576]: debug: socks_freeinbuffer(): socket 9, which 0, free: 288

                                Sep 11 19:08:12 (1347383292.896283) sockd[8576]: debug: socks_freeinbuffer(): socket 9, which 0, free: 288

                                Sep 11 19:08:12 (1347383292.896295) sockd[8576]: debug: socks_recvfrom(): read 17 bytes from socket 9, max read is 288, errno = 0 (no system error)

                                Sep 11 19:08:12 (1347383292.896305) sockd[8576]: debug: socks_freeinbuffer(): socket 9, which 0, free: 288

                                Sep 11 19:08:12 (1347383292.896313) sockd[8576]: debug: socks_addtobuffer(): s = 9, add 16 decoded bytes to read buffer that currently has 0 decoded, 0 encoded

                                Sep 11 19:08:12 (1347383292.896323) sockd[8576]: debug: socks_recvfrom(): socket 9, len 1, flags 0

                                Sep 11 19:08:12 (1347383292.896331) sockd[8576]: debug: socks_getfrombuffer(): s = 9, get up to 1 decoded byte from read buffer that currently has 16 decoded, 0 encoded

                                Sep 11 19:08:12 (1347383292.896341) sockd[8576]: debug: socks_recvfrom(): read 1 byte from buf, 15 bytes left in buf

                                Sep 11 19:08:12 (1347383292.896349) sockd[8576]: debug: socks_recvfrom(): socket 9, len 1, flags 0

                                Sep 11 19:08:12 (1347383292.896358) sockd[8576]: debug: socks_getfrombuffer(): s = 9, get up to 1 decoded byte from read buffer that currently has 15 decoded, 0 encoded

                                Sep 11 19:08:12 (1347383292.896367) sockd[8576]: debug: socks_recvfrom(): read 1 byte from buf, 14 bytes left in buf

                                Sep 11 19:08:12 (1347383292.896387) sockd[8576]: debug: socks_recvfrom(): socket 9, len 1, flags 0

                                Sep 11 19:08:12 (1347383292.896395) sockd[8576]: debug: socks_getfrombuffer(): s = 9, get up to 1 decoded byte from read buffer that currently has 14 decoded, 0 encoded

                                Sep 11 19:08:12 (1347383292.896404) sockd[8576]: debug: socks_recvfrom(): read 1 byte from buf, 13 bytes left in buf

                                Sep 11 19:08:12 (1347383292.896413) sockd[8576]: debug: socks_recvfrom(): socket 9, len 1, flags 0

                                Sep 11 19:08:12 (1347383292.896422) sockd[8576]: debug: socks_getfrombuffer(): s = 9, get up to 1 decoded byte from read buffer that currently has 13 decoded, 0 encoded

                                Sep 11 19:08:12 (1347383292.896431) sockd[8576]: debug: socks_recvfrom(): read 1 byte from buf, 12 bytes left in buf

                                Sep 11 19:08:12 (1347383292.896439) sockd[8576]: debug: socks_recvfrom(): socket 9, len 10, flags 0

                                Sep 11 19:08:12 (1347383292.896447) sockd[8576]: debug: socks_getfrombuffer(): s = 9, get up to 10 decoded bytes from read buffer that currently has 12 decoded, 0 encoded

                                Sep 11 19:08:12 (1347383292.896456) sockd[8576]: debug: socks_recvfrom(): read 10 bytes from buf, 2 bytes left in buf

                                Sep 11 19:08:12 (1347383292.896465) sockd[8576]: debug: socks_recvfrom(): socket 9, len 2, flags 0

                                Sep 11 19:08:12 (1347383292.896474) sockd[8576]: debug: socks_getfrombuffer(): s = 9, get up to 2 decoded bytes from read buffer that currently has 2 decoded, 0 encoded

                                Sep 11 19:08:12 (1347383292.896483) sockd[8576]: debug: socks_recvfrom(): read 2 bytes from buf, 0 bytes left in buf

                                Sep 11 19:08:12 (1347383292.896493) sockd[8576]: debug: run_negotiate(): recv_clientrequest() from client 1.1.1.1.59077 returned 2, errno is 0 (no error)

                                Sep 11 19:08:12 (1347383292.896524) sockd[8576]: debug: send_negotiate(): sending request to mother, bw_shmid = 0, ss_shmid = 0

                                Sep 11 19:08:12 (1347383292.896541) sockd[8576]: debug: send_negotiate(): sending socket 9 (laddr: 2.2.2.2.1080, raddr: 1.1.1.1.59077, protocol: tcp) ...

                                Sep 11 19:08:12 (1347383292.896565) sockd[8576]: debug: send_negotiate(): sent 1 descriptors for command 1.  clientauth none, socksauth none, neg->s 9

                                Sep 11 19:08:12 (1347383292.896578) sockd[8576]: debug: socks_freebuffer(): socket 9

                                Sep 11 19:08:12 (1347383292.896586) sockd[8576]: debug: socks_freebuffer(): freeing buffer 9

                                Sep 11 19:08:12 (1347383292.896595) sockd[8576]: debug: socks_sendto(): socket 4, len 1, flags 0

                                Sep 11 19:08:12 (1347383292.897445) sockd[8575]: debug: post select returned 1 (no system error): nfds = 24, rset = 0xf09920 (11, ), bufrset = (nil) (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0x0

                                Sep 11 19:08:12 (1347383292.897479) sockd[8575]: debug: main(): selectn() returned 1 (no system error)

                                Sep 11 19:08:12 (1347383292.897456) sockd[8576]: debug: pre select: nfds = 5, rset = 0xf09920 (0, 4, ), bufrset = 0xf09d30 (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0x0

                                Sep 11 19:08:12 (1347383292.897490) sockd[8575]: debug: trying to receive request from negotiator-child 8576

                                Sep 11 19:08:12 (1347383292.897562) sockd[8575]: debug: recv_req(): received socket 0 (laddr: 2.2.2.2.1080, raddr: 1.1.1.1.59077, protocol: tcp) ...

                                Sep 11 19:08:12 (1347383292.897580) sockd[8575]: debug: recv_req(): received 1 descriptors for request with method 0, req->s = 11

                                Sep 11 19:08:12 (1347383292.897589) sockd[8575]: debug: sending tcp-client from client-rule #2 to reqchild 8577

                                Sep 11 19:08:12 (1347383292.897603) sockd[8575]: debug: send_req(): sending socket 0 (laddr: 2.2.2.2.1080, raddr: 1.1.1.1.59077, protocol: tcp) ...

                                Sep 11 19:08:12 (1347383292.897634) sockd[8577]: debug: post select returned 1 (no system error): nfds = 5, rset = 0xf09920 (0, ), bufrset = (nil) (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0x0

                                Sep 11 19:08:12 (1347383292.897692) sockd[8577]: debug: recv_req(): received socket 9 (laddr: 2.2.2.2.1080, raddr: 1.1.1.1.59077, protocol: tcp) ...

                                Sep 11 19:08:12 (1347383292.897705) sockd[8577]: debug: recv_req(): received 1 descriptors for request with method 0, req->s = 0

                                Sep 11 19:08:12 (1347383292.897714) sockd[8577]: debug: socks_allocbuffer(): socket 9, stype = 1

                                Sep 11 19:08:12 (1347383292.897886) sockd[8577]: debug: request received, 1.1.1.1.59077 -> 2.2.2.2.1080, authmethod: none, VER: 5 CMD: 1 FLAG: 0 ATYP: 3 address: 1.1.1.1.13719, bw_shmid: 0 ((nil)), ss_shmid: 0 ((nil))

                                Sep 11 19:08:12 (1347383292.897936) sockd[8577]: debug: setsockoptions(): socket 10, type = 1, isclientside = 0

                                Sep 11 19:08:12 (1347383292.897954) sockd[8577]: debug: setsockoptions(): SO_SNDBUF of socket 10: 16384

                                Sep 11 19:08:12 (1347383292.897964) sockd[8577]: debug: setsockoptions(): SO_RCVBUF of socket 10: 87380

                                Sep 11 19:08:12 (1347383292.897992) sockd[8577]: debug: getdefaultexternal()

                                Sep 11 19:08:12 (1347383292.898158) sockd[8577]: debug: getdefaultexternal(): address for eth0 is 2.2.2.2.0

                                Sep 11 19:08:12 (1347383292.898180) sockd[8577]: debug: sockd_bind(): trying to bind address 2.2.2.2.59077, retries is 0

                                Sep 11 19:08:12 (1347383292.898205) sockd[8577]: debug: sockd_bind(): bound address 2.2.2.2.59077

                                Sep 11 19:08:12 (1347383292.898218) sockd[8577]: debug: dorequest(): bound address on external side is 2.2.2.2.59077

                                Sep 11 19:08:12 (1347383292.898235) sockd[8577]: debug: rulespermit(): 1.1.1.1.59077 -> 1.1.1.1.13719, command connect, socket 9 (from 1.1.1.1.59077, accepted on 2.2.2.2.1080)

                                Sep 11 19:08:12 (1347383292.898247) sockd[8577]: debug: rulespermit(): trying to match against socks-rule #1, verdict = pass

                                Sep 11 19:08:12 (1347383292.898261) sockd[8577]: debug: addrmatch(): matching IPv4 address 0.0.0.0/0, tcp: 0, udp: 0, op: none, end: 0 against 1.1.1.1.59077, for protocol tcp, without alias

                                Sep 11 19:08:12 (1347383292.898295) sockd[8577]: debug: addrmatch(): matching IPv4 address 0.0.0.0/0, tcp: 13719, udp: 13719, op: eq, end: 0 against 1.1.1.1.13719, for protocol tcp, without alias

                                Sep 11 19:08:12 (1347383292.898306) sockd[8577]: debug: methodisset(): checking if method none is set in the list "none"

                                Sep 11 19:08:12 (1347383292.898318) sockd[8577]: debug: accesscheck(): method: none, 1.1.1.1.59077 -> 2.2.2.2.1080

                                Sep 11 19:08:12 (1347383292.898327) sockd[8577]: debug: methodisset(): checking if method none is set in the list "none"

                                Sep 11 19:08:12 (1347383292.898335) sockd[8577]: debug: accesscheck(): method none already checked, matches

                                Sep 11 19:08:12 (1347383292.898343) sockd[8577]: debug: rulespermit(): rule matched: 1

                                Sep 11 19:08:12 (1347383292.898360) sockd[8577]: debug: socks_connecthost(): connect to 1.1.1.1.13719 from 2.2.2.2.59077, on socket 10.  Timeout is 0

                                Sep 11 19:08:12 (1347383292.898372) sockd[8577]: debug: cgethostbyname(): hit: 0, miss: 0

                                Sep 11 19:08:12 (1347383292.898381) sockd[8577]: debug: cgethostbyname(): 1.1.1.1

                                Sep 11 19:08:12 (1347383292.898865) sockd[8577]: debug: socks_connecthost(): connect to 1.1.1.1.13719 from 2.2.2.2.59077, on socket 10.  Timeout is 0

                                Sep 11 19:08:12 (1347383292.898951) sockd[8577]: debug: socks_connecthost(): connect() returned -1 (Operation now in progress)

                                Sep 11 19:08:12 (1347383292.899002) sockd[8577]: debug: send_io(): sending 2 descriptors for command 1.  bw_shmid: 0, ss_shmid: 0

                                Control: 9 (laddr: 2.2.2.2.1080, raddr: 1.1.1.1.59077, protocol: tcp)

                                Src    : 9 (laddr: 2.2.2.2.1080, raddr: 1.1.1.1.59077, protocol: tcp)

                                Dst    : 10 (laddr: 2.2.2.2.59077, raddr: N/A, protocol: tcp)

                                Sep 11 19:08:12 (1347383292.899025) sockd[8577]: debug: socks_freebuffer(): socket 9

                                Sep 11 19:08:12 (1347383292.899034) sockd[8577]: debug: socks_freebuffer(): freeing buffer 9

                                Sep 11 19:08:12 (1347383292.899046) sockd[8577]: debug: socks_sendto(): socket 4, len 1, flags 0

                                Sep 11 19:08:12 (1347383292.899868) sockd[8577]: debug: pre select: nfds = 5, rset = 0xf09920 (0, 4, ), bufrset = (nil) (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0x0

                                Sep 11 19:08:12 (1347383292.899916) sockd[8575]: debug: childcheck(): current # of free request-slots is 3, while the configured minimum is 4. Thus need to add a request-child

                                Sep 11 19:08:12 (1347383292.899950) sockd[8575]: debug: addchild(): minimum rcvbuf for mother and sndbuf for request child: 14468 and 14468, set: 28936 and 28936

                                Sep 11 19:08:12 (1347383292.900939) sockd[8575]: debug: addchild(): created new request-child, pid 8582, data-pipe 22, ack-pipe 25

                                Sep 11 19:08:12 (1347383292.900995) sockd[8575]: debug: calling select().  Free negc: 23 reqc: 4; ioc: 8

                                Sep 11 19:08:12 (1347383292.901020) sockd[8575]: debug: pre select: nfds = 26, rset = 0xf09920 (9, 11, 12, 13, 14, 15, 16, 17, 18, 19, 21, 22, 23, 25, ), bufrset = (nil) (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0x0

                                Sep 11 19:08:12 (1347383292.901041) sockd[8575]: debug: post select returned 3 (no system error): nfds = 26, rset = 0xf09920 (12, 13, 15, ), bufrset = (nil) (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0x0

                                Sep 11 19:08:12 (1347383292.901051) sockd[8575]: debug: main(): selectn() returned 3 (no system error)

                                Sep 11 19:08:12 (1347383292.901061) sockd[8575]: debug: trying to receive request from request-child 8577

                                Sep 11 19:08:12 (1347383292.901106) sockd[8575]: debug: recv_io(): received 2 descriptor(s) for command 1.  Control: -1, src: 0, dst: 4.  Allocated to iov #0

                                Sep 11 19:08:12 (1347383292.901126) sockd[8575]: debug: recv_io(): received src socket 0 (laddr: 2.2.2.2.1080, raddr: 1.1.1.1.59077, protocol: tcp) ...

                                Sep 11 19:08:12 (1347383292.901138) sockd[8575]: debug: recv_io(): received dst socket 4 (laddr: 2.2.2.2.59077, raddr: N/A, protocol: tcp) ...

                                Sep 11 19:08:12 (1347383292.901153) sockd[8575]: debug: sending tcp-client to iochild 8581

                                Sep 11 19:08:12 (1347383292.901214) sockd[8575]: debug: send_io(): sending 2 descriptors for command 1.  bw_shmid: 0, ss_shmid: 0

                                Control: -1 (laddr: N/A, raddr: N/A, protocol: N/A)

                                Src    : 0 (laddr: 2.2.2.2.1080, raddr: 1.1.1.1.59077, protocol: tcp)

                                Dst    : 4 (laddr: 2.2.2.2.59077, raddr: N/A, protocol: tcp)

                                Sep 11 19:08:12 (1347383292.901239) sockd[8575]: debug: socks_recvfrom(): socket 13, len 1, flags 0

                                Sep 11 19:08:12 (1347383292.901307) sockd[8582]: debug: I am new request-child, data-pipe 0, ack-pipe 4

                                Sep 11 19:08:12 (1347383292.901491) sockd[8582]: debug: pre select: nfds = 5, rset = 0xf09d30 (0, 4, ), bufrset = (nil) (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0x0

                                Sep 11 19:08:12 (1347383292.901509) sockd[8581]: debug: post select returned 1 (no system error): nfds = 5, rset = 0xf09920 (0, ), bufrset = 0xf0ad70 (), buffwset = 0xf0b180 () wset = 0xf09d30 (), xset = 0xf0a140 (), timeout = 0x0

                                Sep 11 19:08:12 (1347383292.901566) sockd[8581]: debug: socks_allocbuffer(): socket 9, stype = 1

                                Sep 11 19:08:12 (1347383292.901738) sockd[8581]: debug: socks_allocbuffer(): socket 10, stype = 1

                                Sep 11 19:08:12 (1347383292.901902) sockd[8581]: debug: recv_io(): received 2 descriptor(s) for command 1.  Control: -1, src: 9, dst: 10.  Allocated to iov #0

                                Sep 11 19:08:12 (1347383292.901939) sockd[8581]: debug: recv_io(): received src socket 9 (laddr: 2.2.2.2.1080, raddr: 1.1.1.1.59077, protocol: tcp) ...

                                Sep 11 19:08:12 (1347383292.901953) sockd[8581]: debug: recv_io(): received dst socket 10 (laddr: 2.2.2.2.59077, raddr: N/A, protocol: tcp) ...

                                Sep 11 19:08:12 (1347383292.901986) sockd[8581]: debug: getnewios(): received 1 new io, errno = 11 (Resource temporarily unavailable)

                                Sep 11 19:08:12 (1347383292.901999) sockd[8581]: debug: io_allocated(): iov #0 allocated for tcp

                                Sep 11 19:08:12 (1347383292.902008) sockd[8581]: debug: io_allocated(): allocated for tcp: 1, udp: 0

                                Sep 11 19:08:12 (1347383292.902027) sockd[8581]: debug: io_fillset_connectinprogress(): socket 10 marked as still connecting

                                Sep 11 19:08:12 (1347383292.902036) sockd[8581]: debug: run_io(): first select.  What is readable, what has finished connecting

                                Sep 11 19:08:12 (1347383292.902045) sockd[8581]: debug: io_allocated(): iov #0 allocated for tcp

                                Sep 11 19:08:12 (1347383292.902054) sockd[8581]: debug: io_allocated(): allocated for tcp: 1, udp: 0

                                Sep 11 19:08:12 (1347383292.902067) sockd[8581]: debug: pre select: nfds = 11, rset = 0xf09920 (0, 4, 9, ), bufrset = 0xf0ad70 (9, ), buffwset = 0xf0b180 (9, ) wset = 0xf09d30 (10, ), xset = 0xf0a140 (9, ), timeout = 30:0

                                Sep 11 19:08:12 (1347383292.902832) sockd[8575]: debug: socks_recvfrom(): read 1 byte from socket 13, max read is 1, errno = 0 (no system error)

                                Sep 11 19:08:12 (1347383292.902861) sockd[8575]: debug: main(): negotiator-child 8576 has freed a tcp slot, now has 24 slots free

                                Sep 11 19:08:12 (1347383292.902873) sockd[8575]: debug: socks_recvfrom(): socket 15, len 1, flags 0

                                Sep 11 19:08:12 (1347383292.902885) sockd[8575]: debug: socks_recvfrom(): read 1 byte from socket 15, max read is 1, errno = 0 (no system error)

                                Sep 11 19:08:12 (1347383292.902895) sockd[8575]: debug: main(): request-child 8577 has freed a tcp slot, now has 1 slot free

                                Sep 11 19:08:12 (1347383292.902905) sockd[8575]: debug: calling select().  Free negc: 24 reqc: 5; ioc: 7

                                Sep 11 19:08:12 (1347383292.902922) sockd[8575]: debug: pre select: nfds = 26, rset = 0xf09920 (9, 11, 12, 13, 14, 15, 16, 17, 18, 19, 21, 22, 23, 25, ), bufrset = (nil) (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0x0

                                Sep 11 19:08:42 (1347383322.932120) sockd[8581]: debug: post select returned 0 (no system error): nfds = 11, rset = 0xf09920 (), bufrset = 0xf0ad70 (), buffwset = 0xf0b180 () wset = 0xf09d30 (), xset = 0xf0a140 (), timeout = 0:0

                                Sep 11 19:08:42 (1347383322.932196) sockd[8581]: debug: io_timetiltimeout(): protocoltimeout = 30, tnow = 1347383322, lastio = 1347383292

                                Sep 11 19:08:42 (1347383322.932212) sockd[8581]: debug: io_gettimedout(): io #0 with control -1, src 9, dst 10, has reached the timeout point

                                Sep 11 19:08:42 (1347383322.932281) sockd[8581]: debug: io_timetiltimeout(): protocoltimeout = 30, tnow = 1347383322, lastio = 1347383292

                                Sep 11 19:08:42 (1347383322.932295) sockd[8581]: info: pass(1): tcp/connect ]: 0 -> 1.1.1.1.59077 2.2.2.2.1080 -> 0, 0 -> 2.2.2.2.59077 1.1.1.1.13719 -> 0: timeout while waiting for the connect to complete.  Session duration: 30s

                                accept to negotiate start       : 0.000549s

                                negotiate start to finish       : 0.006112s

                                session establish to first i/o  : N/A

                                total session duration          : 30.039947s

                                Sep 11 19:08:42 (1347383322.932314) sockd[8581]: debug: io_timetiltimeout(): protocoltimeout = 30, tnow = 1347383322, lastio = 1347383292

                                Sep 11 19:08:42 (1347383322.932324) sockd[8581]: info: pass(1): tcp/accept ]: 0 -> 1.1.1.1.59077 2.2.2.2.1080 -> 0: timeout while waiting for the connect to complete.  Session duration: 30s

                                accept to negotiate start       : 0.000549s

                                negotiate start to finish       : 0.006112s

                                session establish to first i/o  : N/A

                                total session duration          : 30.039947s

                                Sep 11 19:08:42 (1347383322.932332) sockd[8581]: debug: socks_freebuffer(): socket 9

                                Sep 11 19:08:42 (1347383322.932341) sockd[8581]: debug: socks_freebuffer(): freeing buffer 9

                                Sep 11 19:08:42 (1347383322.932350) sockd[8581]: debug: socks_freebuffer(): socket 10

                                Sep 11 19:08:42 (1347383322.932358) sockd[8581]: debug: socks_freebuffer(): freeing buffer 10

                                Sep 11 19:08:42 (1347383322.932442) sockd[8581]: debug: socks_sendto(): socket 4, len 1, flags 0

                                Sep 11 19:08:42 (1347383322.933286) sockd[8581]: debug: io_allocated(): allocated for tcp: 0, udp: 0

                                Sep 11 19:08:42 (1347383322.933314) sockd[8581]: debug: run_io(): first select.  What is readable, what has finished connecting

                                Sep 11 19:08:42 (1347383322.933324) sockd[8581]: debug: io_allocated(): allocated for tcp: 0, udp: 0

                                Sep 11 19:08:42 (1347383322.933335) sockd[8581]: debug: pre select: nfds = 5, rset = 0xf09920 (0, 4, ), bufrset = 0xf0ad70 (), buffwset = 0xf0b180 () wset = 0xf09d30 (), xset = 0xf0a140 (), timeout = 0x0

                                Sep 11 19:08:42 (1347383322.933465) sockd[8575]: debug: post select returned 1 (no system error): nfds = 26, rset = 0xf09920 (23, ), bufrset = (nil) (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0x0

                                Sep 11 19:08:42 (1347383322.933489) sockd[8575]: debug: main(): selectn() returned 1 (no system error)

                                Sep 11 19:08:42 (1347383322.933500) sockd[8575]: debug: socks_recvfrom(): socket 23, len 1, flags 0

                                Sep 11 19:08:42 (1347383322.933517) sockd[8575]: debug: socks_recvfrom(): read 1 byte from socket 23, max read is 1, errno = 0 (no system error)

                                Sep 11 19:08:42 (1347383322.933527) sockd[8575]: debug: main(): io-child 8581 has freed a tcp slot, now has 8 slots free

                                Sep 11 19:08:42 (1347383322.933540) sockd[8575]: debug: calling select().  Free negc: 24 reqc: 5; ioc: 8

                                Sep 11 19:08:42 (1347383322.933556) sockd[8575]: debug: pre select: nfds = 26, rset = 0xf09920 (9, 11, 12, 13, 14, 15, 16, 17, 18, 19, 21, 22, 23, 25, ), bufrset = (nil) (), buffwset = (nil) () wset = (nil) (), xset = (nil) (), timeout = 0x0

                                • 13. Re: Add Server behind Proxy Server in BSA
                                  Bill Robinson

                                  In the default line in the secure file on the appserver, have you changed the ‘port=4750’ to ‘port=13791’ and restarted the appserver?  I’m not sure why you are referencing the 59077 – where do you see that port being used ?

                                  • 14. Re: Add Server behind Proxy Server in BSA
                                    Karim Brown

                                    Hi Bill,

                                    I can now add the server. The Socks proxy configuration was not fine.

                                    we use the port 13719 for the comunication with the agent and in our agent templates is the secure file set to 13719 with the restart command from the begining if you mean the secure file on the Target system.

                                    But if you mean the secure file on the appserver. Can you tell me wehre can I find this secure file (if not in windows/rsc/secureFile)?

                                    The problem is now, why uses BL for example the port 59077 to communicate with the Target Server. In the sockd.log BL uses other ports like 59077, 62197... this port is not fix.

                                    a Sockd.log file other example :

                                    with: AppServ IP (1.1.1.1), SOCKS IP (2.2.2.2) & Target IP (3.3.3.3)

                                    Sep 12 14:38:52 (1347453532.529050) sockd[8581]: debug: io_gettimedout(): io #0 with control -1, src 9, dst 10, has reached the timeout point

                                    Sep 12 14:38:52 (1347453532.529080) sockd[8581]: debug: io_timetiltimeout(): protocoltimeout = 30, tnow = 1347453532, lastio = 1347453502

                                    Sep 12 14:38:52 (1347453532.529092) sockd[8581]: info: pass(1): tcp/connect ]: 0 -> 1.1.1.1.62197 2.2.2.2.1080 -> 0, 0 -> 2.2.2.2.62197 3.3.3.3.13719 -> 0: timeout while waiting for the connect to complete.  Session duration: 30s

                                    accept to negotiate start       : 0.000658s

                                    negotiate start to finish       : 0.007964s

                                    session establish to first i/o  : N/A

                                    total session duration          : 30.039572s

                                     

                                    I Think normaly BL uses this way to communicate with targets over SOCKS:

                                    Appserver -->1080 -->SOCKS -->AgentPort-->Target

                                    right?

                                    should I install the NSH Proxy server any wehre? should I set any vaiables in the blasadmin like appserver.ProxySvcPort, appserver.CLRProxyPort etc...?

                                    1 2 Previous Next