Remote agent trouble shooting steps

Hi All,

Any one have the trouble shooting steps for agents whose status is Stale or Offline but remote server is active?

Provide the steps which can be performed remotely.

Assuming that the problem is limited to some assets:

  • Check your proxy settings of the agent,
  • proxy rules,
  • and proxy.pac file on the hosts.

Make sure that FW allows traffic twds proxy.

Check the connection flow:

  • If using a collector: can you ping it from the host with agent? Is the port listening on the collector (netstat)?
  • If connecting directly to rapid7: can you resolve e.g., domain to it’s DNS records?
    If so, can you initiate an SSL handshake?
    openssl s_client -connect

Other idea’s: