This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
We’re currently experiencing a high volume of support requests, which may result in longer response times — Thank you for your patience and understanding.
Community FAQ
Register | Log In
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Lansweeper Community
- Forums
- Archive
- Active Scaning is using multiple ports
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Register to ask a question, start a topic or share an idea
Join the Community
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-23-2009 05:32 PM
Hi,
Im running Lansweeper 3.5 in a Windows 2008 Server. The server needs to reach 2 different subnets protected by an Isa Server 2006 firewall.
The problem is that the connection test uses different ports for every different computer, so isa always block the traffic. If I create a rule lets say for port 2102 i can get workstation1, but not workstation2 because lansweeper trys to get the info of workstation2 using port 3513. And port 2102 is always associated with workstation 1, so i guess lansweeper is not using random ports.
I have 140 workstations so I want that rpc queries from the server to workstations always uses the same port or at least the same range so I will be able to create a rule in ISA SERVER.
I've tried to Set Up a Fixed Port for WMI ( http://msdn.microsoft.com/en-us/library/bb219447(VS.85).aspx ) but this doesn't work too.
Could someone help me?
Im running Lansweeper 3.5 in a Windows 2008 Server. The server needs to reach 2 different subnets protected by an Isa Server 2006 firewall.
The problem is that the connection test uses different ports for every different computer, so isa always block the traffic. If I create a rule lets say for port 2102 i can get workstation1, but not workstation2 because lansweeper trys to get the info of workstation2 using port 3513. And port 2102 is always associated with workstation 1, so i guess lansweeper is not using random ports.
I have 140 workstations so I want that rpc queries from the server to workstations always uses the same port or at least the same range so I will be able to create a rule in ISA SERVER.
I've tried to Set Up a Fixed Port for WMI ( http://msdn.microsoft.com/en-us/library/bb219447(VS.85).aspx ) but this doesn't work too.
Could someone help me?
Labels:
- Labels:
-
Archive
7 REPLIES 7
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎05-04-2009 08:29 PM
Hey,
I've tried all I found but nothing is working. I've tried configuring the client too but it's still not working. I will keep on trying and if I found the solution will post it.
I've tried all I found but nothing is working. I've tried configuring the client too but it's still not working. I will keep on trying and if I found the solution will post it.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎05-04-2009 08:22 PM
Maybe osegundo can post his solution but according to the msdn documentation you need to set the fixed port on the client.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎05-04-2009 04:22 PM
Hi,
We are also having the problem like OSEGUNDO.
Amigos,
Any update or solution available yet.
Waiting for your replies.
Best Regards,
Sundar RS
We are also having the problem like OSEGUNDO.
Amigos,
Any update or solution available yet.
Waiting for your replies.
Best Regards,
Sundar RS
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-23-2009 11:00 PM
ok,
I will try but I'm not sure this is necessary in the client. In fact the client now is not receiving any query because firewall is blocking it. The query goes from the server to the client passing through the firewall. What i need indeed is that the server always launch the queries using a single port, so i cant make a rule allowing traffic from server to clients using port XXXX TCP.
I'll keep on searching, and post tomorrow some screenshots of what I'm getting on the firewall.
Thank you for your fast responses
I will try but I'm not sure this is necessary in the client. In fact the client now is not receiving any query because firewall is blocking it. The query goes from the server to the client passing through the firewall. What i need indeed is that the server always launch the queries using a single port, so i cant make a rule allowing traffic from server to clients using port XXXX TCP.
I'll keep on searching, and post tomorrow some screenshots of what I'm getting on the firewall.
Thank you for your fast responses
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-23-2009 10:51 PM
I'm not sure if you did this but you need to do the second step on all you workstations, not on the server. (fixed port)
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-23-2009 10:40 PM
Hi,
Actually I've tried 2nd step and didn't worked. First step worked but then when a random port is assigned the firewall blocks it. The steps for changing the dynamic port assignment to a single port are not working, at least for me. The policy is well configured and the parameter for rpc is enabled, which affects port 135. Concerning port 135 all resolved and working. The problem comes when the 1st step is achieved and lansweeper tries to get info using random ports.
I can't not allow all traffic from server to subnets. Servers, clients, and all departments are separated using subnets and VLANS. In every subnet there's a firewall which block all traffic by default and we only allow the minimum required for clients and server to see other subnets. It's a matter of security and some law accomplishments which affect our company, so i can't allow one server to see all network and all ports directly.
I'been doing a lot of search and seems there's nothing in google talking about bypass isa server, except using rpc over https.
I think it there will be a solution because there are a lot of tools which are working using wmi and rpc calls
Appreciate your help and hope we all could find a solution.
I'll keep on searching.
Actually I've tried 2nd step and didn't worked. First step worked but then when a random port is assigned the firewall blocks it. The steps for changing the dynamic port assignment to a single port are not working, at least for me. The policy is well configured and the parameter for rpc is enabled, which affects port 135. Concerning port 135 all resolved and working. The problem comes when the 1st step is achieved and lansweeper tries to get info using random ports.
I can't not allow all traffic from server to subnets. Servers, clients, and all departments are separated using subnets and VLANS. In every subnet there's a firewall which block all traffic by default and we only allow the minimum required for clients and server to see other subnets. It's a matter of security and some law accomplishments which affect our company, so i can't allow one server to see all network and all ports directly.
I'been doing a lot of search and seems there's nothing in google talking about bypass isa server, except using rpc over https.
I think it there will be a solution because there are a lot of tools which are working using wmi and rpc calls
Appreciate your help and hope we all could find a solution.
I'll keep on searching.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-23-2009 10:23 PM
Wmi first connects on port 135 Dcom and then uses a random port.
The msdn article you used makes the 2e step work on a static port.
I remember that there's also an option in isa "strict RPC policy" (don't remember the exact wording) that sometimes gives problems.
A suggestion:
If you use isa server, why not create a rule that allows all traffic from the lansweeper server to the 2 subnets?
The msdn article you used makes the 2e step work on a static port.
I remember that there's also an option in isa "strict RPC policy" (don't remember the exact wording) that sometimes gives problems.
A suggestion:
If you use isa server, why not create a rule that allows all traffic from the lansweeper server to the 2 subnets?
Archive
This board contains archived posts from the retired Lansweeper Forum and Insiders Community.
New to Lansweeper?
Try Lansweeper For Free
Experience Lansweeper with your own data. Sign up now for a 14-day free trial.
Try Now
Related Content
- Query inside of another query? in Reports & Analytics
- ServiceNow Service Graph Integration - Mapping against Install Status in General Discussions
- disabled Computers Active Directory in Reports & Analytics
- Assets (AD Computers) keep getting rediscovered in Product Discussions
- Report showing assets with non active user relations in Reports & Analytics
