cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
ecardanha
Level 7
Report Inappropriate Content
Message 1 of 3
‎06-24-2015 06:46 AM

Reported IP by McAfee Agent Showing Private IP instead of Public IP

Wondering if there is any setting that when the McAfee Agent checks in for it to report what their actual Public IP is and not a Private IP prior to going through say a home router?  Currently running ePO 5.1.1 and the McAfee Agent is 4.8.0.1938.  Right now if an agent checks in off site and is behind a home router all I see is the 192.168.1.x address which doesn't give me a lot of information to go on.

1 person had this problem.
0 Kudos
Reply
2 Replies
Former Member
Not applicable
Report Inappropriate Content
Message 2 of 3
‎06-25-2015 07:25 AM

Re: Reported IP by McAfee Agent Showing Private IP instead of Public IP

As I understand it, the MA gets the machine's IP address locally and passes it over to ePO, rather than ePO polling the endpoints and waiting for the answer.  As the endpoint connected to a home router wont always see it's public-facing IP (without router reconfiguration anyway), it will only have the local IP it is allocated to report back to EPO. 

With some tinkering you could get the routers/endpoints to get the public IP and report it back, but that would be a lot of reconfiguration on a lot of different router types (and not to mention various privacy matters and potential issues with the end user's ISPs having their IPs published if the users are connecting over their own internet connections and not a business-provided one)

TL;DR - it's potentially more work than it's worth. 

0 Kudos
Reply
ecardanha
Level 7
Report Inappropriate Content
Message 3 of 3
‎06-25-2015 08:23 AM

Re: Reported IP by McAfee Agent Showing Private IP instead of Public IP

Ok that is what I was afraid of that the agent is just reporting what it can see from say the ipconfig and it isn't like the ePO is seeing where the https connection for that machine is from during the time of reporting in and presenting that IP in the System Tree.

0 Kudos
Reply
You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use our Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from product experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by employees.
Join the Community
Join the Community

TrellixSkyhigh Security | Support Trellix.com SkyhighSecurity.com

Legal Privacy Copyright © 2023 Musarubra US LLC