avielc 52 Posted February 27, 2022 Share Posted February 27, 2022 Hi everyone. Trying to figure out how can I get the "remote host" column in ESET Protect to show the real\external IP address of a client reaching out to the server via the reverse proxy set up (using Apace according to ESET's instructions. ) I also notice it doesn't display the actual IP address for computers connected through the network (e.g. those in office or over VPN - which have communicate with the internet via the office public IP. ) How can I get it to work correctly? Where is the missing configuration to have ESET report external\public IP address? Thanks! Link to comment Share on other sites More sharing options...
avielc 52 Posted February 28, 2022 Author Share Posted February 28, 2022 Would appreciate some answer on the matter guys. (or if anyone managed to figure it out) This is really bugging. Trying to add the suggested PreserveIPHost - still shows the internal IP proxy address is there something I'm missing? Thanks again Link to comment Share on other sites More sharing options...
avielc 52 Posted March 4, 2022 Author Share Posted March 4, 2022 Bumping up again. No one has any clue about it? Link to comment Share on other sites More sharing options...
ESET Moderators Peter Randziak 1,081 Posted March 7, 2022 ESET Moderators Share Posted March 7, 2022 EP displays IP of the proxy, which is seen by the OS from which the agents are connecting. Agent does not check the public IP, but reports the data from the network interface i.e. what you can see in ipconfig. So if you want to achieve this. I'm afraid that the agents would had to connect directly or otherwise without the proxy... Peter Link to comment Share on other sites More sharing options...
avielc 52 Posted March 7, 2022 Author Share Posted March 7, 2022 Thanks Peter, Still need some sort of a solution - a remote command, some report to gather that info. Can we come up with that? (maybe create customized report collection from the machine? ) Link to comment Share on other sites More sharing options...
ESET Moderators Peter Randziak 1,081 Posted March 7, 2022 ESET Moderators Share Posted March 7, 2022 Sure, I understand. A possible solution which comes to my mind is to use the Run command from ESET PROTECT, but you need to find a suitable way how to deliver the output... Peter avielc 1 Link to comment Share on other sites More sharing options...
avielc 52 Posted March 7, 2022 Author Share Posted March 7, 2022 That's what I'm thinking. I'm asking how does a command reply it's output? I could probably find some curl command for macs but I need to find a way to view the output of the command. a customize report \ a report that will run the command to a website that reports external IP address to some log text file would be helpful. Link to comment Share on other sites More sharing options...
avielc 52 Posted March 15, 2022 Author Share Posted March 15, 2022 Hoping to get more update on this matter. If anyone has any knowledge I'd appreciate it Link to comment Share on other sites More sharing options...
Recommended Posts