Hi All,
Any one have the trouble shooting steps for agents whose status is Stale or Offline but remote server is active?
Provide the steps which can be performed remotely.
Assuming that the problem is limited to some assets:
- Check your proxy settings of the agent,
- proxy rules,
- and proxy.pac file on the hosts.
Make sure that FW allows traffic twds proxy.
Check the connection flow:
- If using a collector: can you ping it from the host with agent? Is the port listening on the collector (netstat)?
- If connecting directly to rapid7: can you resolve e.g., domain eu.endpoint.ingress.rapid7.com to it’s DNS records?
nslookup eu.endpoint.ingress.rapid7.com
If so, can you initiate an SSL handshake?
openssl s_client -connect eu.endpoint.ingress.rapid7.com:443
Other idea’s:
- Verify the agent is running: Agent Controls | Insight Agent Documentation
- Perform Agent connection diagnostics: Agent Connection Diagnostics | Insight Agent Documentation
- Check the agent log files: Agent Logs | Insight Agent Documentation