Panagiotis Goudas

What if I stop ESET service and then start it again while I'm logging the session with Wireshark?

I can create a pcap file log via Wireshark. Any idea how can I trigger the client to contact ESET PROTECT server? Furthermore, I would like some help about how to raise a support ticket. Thanks in advance for your answer.

Yes DNS resolves it properly to the right IP.

I upload here the files I found so that you can give me a piece of advice about what is wrong. I uninstalled (safe mode) and installed again the ESET package (endpoint security and remote agent) but still I cannot get communication. status.pdf trace.log

Do you have any idea what should I search for particularly inside the logs?

Hello everyone. I installed the latest version of ESET Endpoint Security (version 11.0.2044.0) on a PC but still I cannot see it on ESET Protect Console. Ι uninstalled the product and installed it again but still I get the same problem. The product is running without any problem locally. The only problem is that we cannot communicate with the PC through ESET Protect. Is there any idea why this may happen? Thanks in advance for your answer.

Hello. I was wondering if there is any way to quarantine/delete files that were detected and retained by ESET PROTECT without connecting to this pc. Is there any way to achieve this through ESET Console? Thanks in advance for your answer.

I'll try it one more time and maybe I'll send you a new archive file in the following days to make sure that this is the problem exactly.

Can I send you something more about the problem? Do you maybe have something else in mind from other times that someone indicated this issue in the past?

Don't really know when this issue started exactly but it's been some weeks now for sure. It is a big organisation, of course there were some changes. The thing is that I get this warning only in this pc for the moment. Did you manage to find something throught the log file I sent you? Because I'm trying to find what is going wrong but I can't. Moreover I cannot exactly understand the importance of the message and if it points a vulnerability or not.

Just sent you a message with the link Marcos 😉

The problem appeared again so I collected the logs with Eset Log Collector. Unfortunately the file is larger than 200MB so I can't upload it directly. Is it OK if I upload it through a wetransfer link here?

I will try to do it but I'm pretty sure that I get this message constantly and not on specific times. Is there any general idea what might this be? I saw that maybe a specific port needs to be open so it can communicate with ESET servers.

Hello. I keep getting the message "Limited Direct Cloud Connectivity" for a client in ESET PROTECT. Even after updating ESET Endpoint Security of the client to the latest version, I keep getting this message. All the clients that are connected to my ESET console follow the same policies, so I don't understand exactly what is the problem with this PC. Any ideas why this message appears?

Thanks a lot for your answer Marcos. If ESET achieves to add this feature in reports, let us know. It would be more than welcome such function.

Hello everyone. I was wondering if there is any way to generate a report in ESET PROTECT that shows the DNS configuration for each of the clients connected. I tested some preferences in Reports but nothing worked out. Do you know if I can do it someway? Thank you in advance for your answer.

What does this mean exactly? Is there a way to add any column I want through ESET Reports? Or else, does ESET suggests another way to do so? Thanks in advance for your answer.

Hello everyone. I'm trying to create a report in ESET Protect and I face the following problem. I cannot add all the columns I want for my report. Specifically, I want to create a report that will contain the following information about some PCs of my organization: IP address, MAC address, Computer name, OS name and Device Model. I want to filter the report based on a specific device model and have all the information I mentioned above. When I try to create it, it is impossible to add all these columns because some of them are not shown when I select others. For example, I cannot have the MAC address when I select all the others. Does someone have a clue why is this happening and if there is a way to solve it?

Hello everyone. I have a client that keeps sending notifications at ESET firewall console with the indication "ARP Cache Poisoning attack". The source IP address and the destination IP address appears to be the same. Any idea how can I deal with this? Is there a chance that is a false alarm?

Thanks a lot for your answer and your help. In case I want to collect logs remotely through the ESET console, the best way to do it is through Log Collector? What is the difference between Log Collector and Diagnostic Logs?

Should I just run log collector as shown in the attached image? When we talk about safe mode, we mean windows safe mode right? And one more question please. Thank you very much for your all your answers. Can I check somehow on which day will ESET delete the log files again?

OK but even if I try to delete this file in safe mode, it won't really affect ESET logs behaviour? Except from having ESET to create a new log file. Any quick recommendations about how to find the root cause of extensive logging?

I think you answered my question Marcos. I wanted to know If I delete this file (dat file), will the program create a new dat file and continue to write records there. I have a policy that deletes logs automatically every 15 days. I have a host that has a big log file and I want to delete it before these 15 days. So this was my question actually. If this action creates a problem in the logging procedure of ESET.

Hello everyone. I have a question about ESET logs. ESET creates a .dat log file in hosts' PCs. The policy of ESET Protect is to delete logs every 15 days. If I just delete a log file, will ESET create a new one after these 15 days? Is it safe to do so or it will affect ESET console's policy about logs? Thanks in advance for your answer.

Even if these tasks come with a policy? These scans I refer to, are run through a policy I have applied to some users.