I don't see some hosts



  • Hi all, i have a problem with some off my client which i don’t see in the “pendding host”.

    Server :
    FOG Version: 1.5.3
    OS: Ubuntu Linux

    Client :
    Fog Version: 0.11.16
    OS: windows 10

    IT park : about 1200 computers

    After a problem in my certificates i just made a fresh installation of all of my clients.
    Some works perfectly and i could see it in the menu “List all hosts”, BUT some don’t appears …

    If i look in the fog.log i could see this message :

    ------------------------------------------------------------------------------
    ----------------------------------UserTracker---------------------------------
    ------------------------------------------------------------------------------
     13/06/2018 08:48 Client-Info Client Version: 0.11.16
     13/06/2018 08:48 Client-Info Client OS:      Windows
     13/06/2018 08:48 Client-Info Server Version: 1.5.3
     13/06/2018 08:48 Middleware::Response ERROR: Unable to get subsection
     13/06/2018 08:48 Middleware::Response ERROR: La référence d'objet n'est pas définie à une instance d'un objet.
     13/06/2018 08:48 Service Sleeping for 177 seconds
     13/06/2018 08:51 Middleware::Communication URL: http://srv-fog1-n0/fog/management/index.php?sub=requestClientInfo&configure&newService&json
     13/06/2018 08:51 Middleware::Response Success
     13/06/2018 08:51 Middleware::Communication URL: http://srv-fog1-n0/fog/management/index.php?sub=requestClientInfo&mac=00:09:0F:AA:00:01|88:B1:11:2A:4B:6C|88:B1:11:2A:4B:6D|18:60:24:4A:D3:FE|00:09:0F:FE:00:01&newService&json
     13/06/2018 08:51 Middleware::Authentication Waiting for authentication timeout to pass
     13/06/2018 08:51 Middleware::Communication Download: http://srv-fog1-n0/fog/management/other/ssl/srvpublic.crt
     13/06/2018 08:51 Data::RSA FOG Server CA cert found
     13/06/2018 08:51 Middleware::Authentication Cert OK
     13/06/2018 08:51 Middleware::Authentication No token found at C:\Program Files (x86)\FOG\token.dat, this is expected if the client has not authenticated before
     13/06/2018 08:51 Middleware::Authentication ERROR: Could not get security token
     13/06/2018 08:51 Middleware::Authentication ERROR: Le fichier 'C:\Program Files (x86)\FOG\token.dat' est introuvable.
     13/06/2018 08:51 Middleware::Communication POST URL: http://srv-fog1-n0/fog/management/index.php?sub=requestClientInfo&authorize&newService
     13/06/2018 08:51 Middleware::Response Invalid security token
     13/06/2018 08:51 Middleware::Response Success
     13/06/2018 08:51 Middleware::Communication URL: http://srv-fog1-n0/fog/service/getversion.php?clientver&newService&json
     13/06/2018 08:51 Middleware::Communication URL: http://srv-fog1-n0/fog/service/getversion.php?newService&json
    
     13/06/2018 08:51 Service Creating user agent cache
     13/06/2018 08:51 Middleware::Response ERROR: Unable to get subsection
     13/06/2018 08:51 Middleware::Response ERROR: La référence d'objet n'est pas définie à une instance d'un objet.
     13/06/2018 08:51 Middleware::Response ERROR: Unable to get subsection
     13/06/2018 08:51 Middleware::Response ERROR: La référence d'objet n'est pas définie à une instance d'un objet.
     13/06/2018 08:51 Middleware::Response ERROR: Unable to get subsection
     13/06/2018 08:51 Middleware::Response ERROR: La référence d'objet n'est pas définie à une instance d'un objet.
    
    

    After this i run this mysql command :

    mysql
    use fog
    UPDATE hosts SET hostPubKey="", hostSecToken="", hostSecTime="2018-06-13 14:30:00";
    

    and after a reboot of the client the new error message in fog.log is the following :

    
     13/06/2018 10:27 Client-Info Version: 0.11.16
     13/06/2018 10:27 Client-Info OS:      Windows
     13/06/2018 10:27 Middleware::Authentication Waiting for authentication timeout to pass
     13/06/2018 10:27 Middleware::Communication Download: http://srv-fog1-n0/fog/management/other/ssl/srvpublic.crt
     13/06/2018 10:27 Data::RSA FOG Server CA cert found
     13/06/2018 10:27 Middleware::Authentication Cert OK
     13/06/2018 10:27 Middleware::Authentication No token found at C:\Program Files (x86)\FOG\token.dat, this is expected if the client has not authenticated before
     13/06/2018 10:27 Middleware::Authentication ERROR: Could not get security token
     13/06/2018 10:27 Middleware::Authentication ERROR: Le fichier 'C:\Program Files (x86)\FOG\token.dat' est introuvable.
     13/06/2018 10:27 Middleware::Communication POST URL: http://srv-fog1-n0/fog/management/index.php?sub=requestClientInfo&authorize&newService
     13/06/2018 10:27 Middleware::Response Invalid security token
    

    I also try to execute the command “Database Maintenance Commands” in https://wiki.fogproject.org/wiki/index.php?title=Troubleshoot_MySQL#Hosts_think_they_are_not_registered_.2F_can.27t_register_.2F_other_weirdness
    but it’s always the same.

    Any ideas to resolve this ???



  • @Wayne-Workman the 6 first of the mac are the same and fog could see somes of theese MAC.

    i’m still looking for BUT you’re right @Sebastian-Roth , the forticlient have an integrated FW, maybe the problem… today i will look if I can turn off the FW part and you say after


  • Developer

    @LaurentB Two things coming to my mind. First make sure to read this: https://forums.fogproject.org/topic/10827/computer-getting-4-new-mac-address-daily (possibly what could be causing some of the other pending MACs)

    Second I am wondering if the Forticlient just has some kind of client firewall thing that is preventing the FOG client from communicating with the FOG server.



  • @LaurentB said in I don't see some hosts:

    it’s in its basic function that it add the different MAC and that’s the source of my problem…

    Can you elaborate on this? Is the MAC that it adds the same every time or different every time? Does the FOG Client see this MAC?



  • @Wayne-Workman said in I don't see some hosts:

    Has anyone suggested figuring out how to create an exception for the FOG Client inside of forticlient? This is going to be what needs done, since you have determined that forticlient is what’s preventing the FOG Client from working.

    Forticlient is a program that is use for mounting a VPN, it’s a proprietary program so I can not change anything.
    it’s in its basic function that it add the different MAC and that’s the source of my problem…



  • @LaurentB Has anyone suggested figuring out how to create an exception for the FOG Client inside of forticlient? This is going to be what needs done, since you have determined that forticlient is what’s preventing the FOG Client from working.



  • @Wayne-Workman said in I don't see some hosts:

    @LaurentB said in I don't see some hosts:

    see the client in my hosts BUT it was offline with the red sign “Connection time out”

    Just a comment on that, the red dot just means pings to that host are not working. This does not mean the FOG Client is not working. Often, I have had the red dot and the FOG Client works just fine.

    I explain myself badly (sorry i’m French and my english is not perfect !) but i’m agree with that !
    The client works fine but i have a communication problem between client/serveur (because of Forticlient).



  • @LaurentB said in I don't see some hosts:

    see the client in my hosts BUT it was offline with the red sign “Connection time out”

    Just a comment on that, the red dot just means pings to that host are not working. This does not mean the FOG Client is not working. Often, I have had the red dot and the FOG Client works just fine.



  • Hi !!! I’m back after 2 months … (including 1 of vacation after all) and I start working on Fog again…

    Still have the same problem on various computer :(

    I’m sure the problem comes from Forticlient because I did the following test 2 times with the same result :

    • FOG is allready in a computer with Forticlient BUT i don’t see it in my hosts
    • I remove Forticlient
    • i reboot the computer
    • MAGIC, my computer appear in the pendings hosts… i try to deploy an application and it works perfectly…
    • After a reboot i can still see the computer in my hosts
    • i made a fresh install of Forticlient and made a reboot
    • i see the client in my hosts BUT it was offline with the red sign “Connection time out”

    And so I can not use snappins because the server no longer sees the client ! ;( ;( ;(

    For desktops no problem but for laptops they all have the forticlient

    @Sebastian-Roth / @Quazz / @Wayne-Workman if you have any ideas it could help me ! :D


  • Developer

    @LaurentB I am really wondering about all those different MAC addresses for this host. Does it have that many ethernet/wireless interfaces?

    Now that you have blacklisted the MACs and cleared the database what do you get from the fog-client logs?



  • don’t worry @Sebastian-Roth you are already very nice to help me !!!

    Here the result :

    mysql> DELETE FROM hostMAC WHERE hmMAC LIKE '%00:09:0F%';
    Query OK, 2 rows affected (0.00 sec)
    
    mysql> SELECT hmID,hmHostID,hmMAC,hmPending,hmPrimary FROM hostMAC WHERE hmHostID = 5;
    +------+----------+-------------------+-----------+-----------+
    | hmID | hmHostID | hmMAC             | hmPending | hmPrimary |
    +------+----------+-------------------+-----------+-----------+
    |   10 |        5 | 58:82:a8:92:b1:bf |           | 1         |
    | 2413 |        5 | 18:60:24:48:df:c6 | 1         | 0         |
    | 2414 |        5 | 88:b1:11:2a:50:9a | 1         | 0         |
    | 2415 |        5 | 88:b1:11:2a:50:9d | 1         | 0         |
    | 2416 |        5 | 88:b1:11:2a:50:99 | 1         | 0         |
    | 2418 |        5 | ec:8e:b5:a4:5e:a3 | 1         | 0         |
    | 2419 |        5 | 00:50:b6:78:8a:9a | 1         | 0         |
    | 2420 |        5 | e4:b3:18:d0:7a:51 | 1         | 0         |
    | 2421 |        5 | e6:b3:18:d0:7a:50 | 1         | 0         |
    | 2422 |        5 | e4:b3:18:d0:7a:50 | 1         | 0         |
    +------+----------+-------------------+-----------+-----------+
    10 rows in set (0.00 sec)
    
    mysql> exit
    

  • Developer

    @LaurentB I am real sorry. Have been very busy in the last days and could’t find the time to answer. To delete those entries form the hostMAC table follow this:

    shell> mysql -u root -p
    Enter password: 
    ...
    mysql> use fog;
    Database changed
    
    mysql> DELETE FROM hostMAC WHERE hmMAC LIKE '%00:09:0F%';
    

    After that you might want to check if there is still a MAC entry for that host - hope there is:

    mysql> SELECT hmID,hmHostID,hmMAC,hmPending,hmPrimary FROM hostMAC WHERE hmHostID = 5;
    


  • @Quazz could you tell me how ? i’m not really good in mysql…


  • Moderator

    @laurentb Sorry, I didn’t really know how to proceed on this, I don’t really use clients often myself.

    The host with ID 5 has the offending MAC address, see if you can remove it from that one as a starting point.



  • are you there ? ;)



  • @Quazz and @Sebastian-Roth have you an idea ?



  • I made the change and the SQL, the result follows :

    root@srv-fog1-n0:~# mysql
    Welcome to the MySQL monitor.  Commands end with ; or \g.
    Your MySQL connection id is 6992132
    Server version: 5.7.22-0ubuntu18.04.1 (Ubuntu)
    
    Copyright (c) 2000, 2018, Oracle and/or its affiliates. All rights reserved.
    
    Oracle is a registered trademark of Oracle Corporation and/or its
    affiliates. Other names may be trademarks of their respective
    owners.
    
    Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
    
    mysql> use fog
    Reading table information for completion of table and column names
    You can turn off this feature to get a quicker startup with -A
    
    Database changed
    mysql> SELECT hmID,hmHostID,hmMAC,hmPending FROM hostMAC WHERE hmMAC LIKE '%00:09:0F%';
    +------+----------+-------------------+-----------+
    | hmID | hmHostID | hmMAC             | hmPending |
    +------+----------+-------------------+-----------+
    |   13 |        5 | 00:09:0f:fe:00:01 | 0         |
    | 1817 |        5 | 00:09:0f:aa:00:01 | 0         |
    +------+----------+-------------------+-----------+
    2 rows in set (0.00 sec)
    
    mysql>
    
    

  • Developer

    @LaurentB I think you should start by filtering those MACs. Go to FOG Configuration -> FOG Settings -> FOG Client - Host Register and set QUICKREG PENDING MAC FILTER to 00:09:0F. Now with that no clients should be able to register those MACs anymore. But we also need to see if there are entries with those MACs in the database and clear those:

    shell> mysql -u root -p
    Enter password: 
    ...
    mysql> use fog;
    Database changed
    
    mysql> SELECT hmID,hmHostID,hmMAC,hmPending FROM hostMAC WHERE hmMAC LIKE '%00:09:0F%';
    

    Post output here…

    PS: Turns out Joe is very busy at the moment so we’ll have to try and sort this one out.


  • Moderator

    @laurentb Interesting, that means none of the clients with this software have been able to retrieve their security tokens from the server.

    We’ll likely have to wait on @Joe-Schmitt 's input on this as he is the main developer of the client.



  • @Quazz ok but there is a way to look for the hosts who have this duplicate MAC ?

    In the menu “list all hosts” i don’t have the possibility search by MAC and in the menu “Host Listing Export” it don’t find any “00:09:0F:AA:00:01”.


Log in to reply
 

307
Online

5.8k
Users

13.1k
Topics

123.3k
Posts