Channels
doorman
infrastructure
random
zercurity
community-feeds
fleet-dev
code-review
queryhub
apple-silicon
carving
tls
fim
goquery
zentral
aws
querycon
golang
zeek
file-carving
fuzzing
auditing-warroom
linen-dev
fleetosquery
plugins
jobs
arm-architecture
darkbytes
process-auditing
uptycs
android_tests
selfgroup
vendor-feeds
fleet
eclecticiq-polylogyx-extension
ebpf
website
core
general
macos
kolide
osctrl
extensions
foundation
sql
officehours
linux
windows
Title
e
eli_pro
01/03/2019, 10:12 PMSo just to be clear this is the page I am not able to download the server certificate from. Tried changing URL to server ip address, public ip address and what I think is my fqdn but still no luck.
@zwass Thank you for answering me earlier questions.
z
zwass
01/03/2019, 10:15 PMJust use the certificate file that you are providing to the server
e
eli_pro
01/03/2019, 10:42 PM@zwass any idea if this is bc of my URL or tls?
z
zwass
01/04/2019, 12:09 AMThis looks like you provided an incorrect URL in the osqueryd configuration. Connection refused usually means there is no server listening at that address/port.
👍 1
e
eli_pro
01/04/2019, 2:02 PMOk. Will troubleshoot. Thank you.
@zwass So I checked my fqnd and did a ping -a from another server and its getting recognized. This is how i have my URL set My fqdn is me.mylabserver.com so I have my URL as https://me.mylabserver.com
Not sure if this warning has to do with my clients not connecting to server.
@groob Appreciate you guys help. Thank you.
g
groob
01/04/2019, 5:04 PMit says connection refused. is your server up?
e
eli_pro
01/04/2019, 5:08 PMyes, its running.
g
groob
01/04/2019, 5:09 PMyour server is running on port 8080 but you’re connecting to port 443
e
eli_pro
01/04/2019, 5:22 PMThats true. Let me change that.
g
groob
01/04/2019, 5:25 PMnow it’s timing out but that looks like an issue on your end again. i’m not sure why that would be
e
eli_pro
01/04/2019, 5:27 PMThe server seem to recognize it.
g
groob
01/04/2019, 5:28 PMall the logs are showing me are from the frontend requests
e
eli_pro
01/04/2019, 5:33 PMOk I see.
I m not sure why kolide isn't working for me. Not sure what I am doing wrong. We were planning on using it on about 6000 units.
g
groob
01/04/2019, 5:35 PMis it always timing out?
or are you getting other error messages?
can you show me the output of
curl -v <https://your-fleet-server:8080/healthz>e
eli_pro
01/04/2019, 5:40 PMg
groob
01/04/2019, 5:40 PMso osquery is not the problem
firewall issue? something else?
try restarting fleet
e
eli_pro
01/04/2019, 5:41 PMok. copy.
glad we can rule out osquery as problem.
g
groob
01/04/2019, 5:43 PMthe issue is 100% your environment. not osquery and not fleet
e
eli_pro
01/04/2019, 5:47 PMWas afraid that would be the case.
g
groob
01/04/2019, 5:47 PMare you still able to connect through the browser?
e
eli_pro
01/04/2019, 5:56 PMI am just able to get here in browser. Add new host just give the enroll secret and certificate and link to using launcher or osquery by itself.
g
groob
01/04/2019, 5:56 PMyou’re connecting to
localhostwhatever you’re doing your’re not exposing fleet to be reachable outside of that VM
do you have someone on your networking team or someone with web service experience who can help you troubleshoot?
e
eli_pro
01/04/2019, 6:05 PMyes I ll check with my team to help me with that part.
but glad to know I am following the directions the way they were meant. I ll check with team and hopefully we are able to resolve environment issues. Thank you for all your help.
@groob You were 100% correct. It was firewall. Issue resolved. Thank you once again.
👍 1