ESET Moderators Peter Randziak 1,171 Posted August 30, 2022 ESET Moderators Share Posted August 30, 2022 We are delighted to announce the launch of the ESET Bridge BETA program. ESET Bridge is a new solution for caching and forwarding traffic of ESET products heading to ESET's online services. ESET Bridge, built on NGINX, is a successor of the HTTP Proxy. To name some of the new features and improvements: Integration with ESET PROTECT which will allow users to manage ESET Bridge HTTPS traffic caching Certificates deployment via ESET PROTECT Watchdog functionality Crash dump functionality To test the mentioned features, it is required to deploy: ESET PROTECT BETA build ESET Bridge BETA build Endpoint 10 BETA build These installation binaries are available at https://forum.eset.com/files/category/9-eset-bridge-beta/ Supported OSes for ESET Bridge are Windows Server 2016/2019/2022 and Linux - Linux systems compatible with ESET PROTECT 9.1 Server component Detailed ESET Bridge help is available at https://help.eset.com/ebe/1/en-US/ As usually, by downloading and using the builds, you agree with our BETA program agreement, which is available at https://forum.eset.com/files/file/58-eset-beta-program-agreement/ To ask a question or report any issues, you encounter during the BETA just post a reply here. We are looking forward to your participation and feedback,Peter on behalf of the teams involved IggyPop, TomasP and Trooper 3 Link to comment Share on other sites More sharing options...
ESET Insiders Trooper 67 Posted September 1, 2022 ESET Insiders Share Posted September 1, 2022 Hello Peter, So this is for on prem only correct? I would not mind beta testing the ESET Endpoint Security v 10 if it is compatible with ESET Protect Cloud. Please advise. Thanks, Jim Link to comment Share on other sites More sharing options...
ESET Moderators Peter Randziak 1,171 Posted September 5, 2022 Author ESET Moderators Share Posted September 5, 2022 Hello Jim / @Trooper, as of now it is compatible with the on-prem deployment only 😞 (the ESET Bridge management, cert distribution for https caching) It can be deployed as a stand-alone, not managed proxy for the current endpoints as well. Peter Trooper 1 Link to comment Share on other sites More sharing options...
obee 2 Posted September 7, 2022 Share Posted September 7, 2022 Hi 1. I have installed eset-bridge on linux (ubuntu20.04) after rebooting there is an error. Problem: ESET Bridge Proxy is non-functional, Problem Detail: The proxy could not be started, and the functionality is missing. (screenshot attached) log Sep 07 03:11:39 eset-bridge Bridge[1391]: nginx: [warn] the "user" directive makes sense only if the master process runs with super-user privileges, ignored in /var/opt/eset/bridge/nginx/conf/nginx.conf:1 Sep 07 03:11:39 eset-bridge Bridge[1391]: nginx: [emerg] cannot load certificate "/var/opt/eset/bridge/nginx/conf/nginx.crt": BIO_new_file() failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/var/opt/eset> reboot and restart EsetBridge service doesn't fix the problem, any suggestions? 2. how to ensure that eset-bridge has cached downloads and updates? is it true that default cache path linux /var/opt/eset/bridge/nginx/data/eset_cache ? Thanks, Link to comment Share on other sites More sharing options...
ESET Staff IggyPop 22 Posted September 7, 2022 ESET Staff Share Posted September 7, 2022 Hello @obee, In an unmanaged environment, when the ESET Bridge is installed as a standalone application, not with the EP All-in-one installer, certificates will need to be deployed manually from ESET Protect via policies to have the HTTPS caching working. More information can be found here: https://help.eset.com/ebe/1/en-US/installation.html?caching_https.html The behavior described above can be reproduced if the HTTPS caching option is enabled in Bridge policy but there was no certificate provided in the policy screen. Regarding the second question, the cache path provided is correct. Also the cache.log file from the nginx/logs folder can be inspected for MISS or HIT tags to check whether the data was fetched from the cache or from the upstream servers. Hope it helps! Ingemar Peter Randziak 1 Link to comment Share on other sites More sharing options...
obee 2 Posted September 12, 2022 Share Posted September 12, 2022 Hi @IggyPop Thank you, now the error is gone and my eset-bridge looks normal. still exploring this bridge, thank you again. IggyPop 1 Link to comment Share on other sites More sharing options...
ESET Insiders Trooper 67 Posted September 13, 2022 ESET Insiders Share Posted September 13, 2022 On 9/5/2022 at 7:20 AM, Peter Randziak said: Hello Jim / @Trooper, as of now it is compatible with the on-prem deployment only 😞 (the ESET Bridge management, cert distribution for https caching) It can be deployed as a stand-alone, not managed proxy for the current endpoints as well. Peter Thanks Peter. Looking forward to when I can beta test the EES for use with Protect Cloud. Cheers! Peter Randziak and IggyPop 2 Link to comment Share on other sites More sharing options...
madara 0 Posted October 10, 2022 Share Posted October 10, 2022 is it possible to custom cache path eset-bridge on linux ? i saw a default example for a custom cache directory only for windows %PROGRAMDATA% I've tried the settings and the result is a warning like the following image: here's my configuration : Link to comment Share on other sites More sharing options...
ESET Staff IggyPop 22 Posted October 10, 2022 ESET Staff Share Posted October 10, 2022 Hi @madara, I was consulting this morning your situation and the recommendation is following: The custom folder needs to be created and also accessible by the eset-bridge user before applying the policy. The eset bridge user needs access rights to that foler with sudo chown -R eset-bridge:eset-bridge /DATA After applying the policy the Bridge server needs restart: sudo systemctl restart EsetBridge.service If anything please do let me know and hopefully this will revoke the issue you are currently experiencing. Thanks. Ingemar Peter Randziak 1 Link to comment Share on other sites More sharing options...
madara 0 Posted October 11, 2022 Share Posted October 11, 2022 16 hours ago, IggyPop said: Hi @madara, I was consulting this morning your situation and the recommendation is following: The custom folder needs to be created and also accessible by the eset-bridge user before applying the policy. The eset bridge user needs access rights to that foler with sudo chown -R eset-bridge:eset-bridge /DATA After applying the policy the Bridge server needs restart: sudo systemctl restart EsetBridge.service If anything please do let me know and hopefully this will revoke the issue you are currently experiencing. Thanks. Ingemar Thanks now can run on /DATA if in the sub folder is there a way to make it run? for example /DATA/cache I have tried but now it doesn't work if it's in the cache sub folder Link to comment Share on other sites More sharing options...
ESET Staff IggyPop 22 Posted October 11, 2022 ESET Staff Share Posted October 11, 2022 Hi @madara, you should be able to follow same steps as before. On 10/10/2022 at 12:00 PM, IggyPop said: Hi @madara, I was consulting this morning your situation and the recommendation is following: The custom folder needs to be created and also accessible by the eset-bridge user before applying the policy. The eset bridge user needs access rights to that foler with sudo chown -R eset-bridge:eset-bridge /DATA After applying the policy the Bridge server needs restart: sudo systemctl restart EsetBridge.service If anything please do let me know and hopefully this will revoke the issue you are currently experiencing. Thanks. Ingemar Thanks. Ingemar Link to comment Share on other sites More sharing options...
extor 0 Posted November 23, 2022 Share Posted November 23, 2022 Hi, I have installed ESET Bridge using All-in-one installer ESET Protect 10.0 and the Bridge certificate has not been created automatically. Do you know what CN and host I should type for Bridge cert? I have only Agent, Proxy Server and Server certificates. Link to comment Share on other sites More sharing options...
ESET Staff IggyPop 22 Posted November 23, 2022 ESET Staff Share Posted November 23, 2022 Hi @extor, are you using the Beta version of the product or the released version? Thanks, Ingemar Link to comment Share on other sites More sharing options...
extor 0 Posted November 23, 2022 Share Posted November 23, 2022 (edited) Hi @IggyPop thanks for the reply. The released version included to Protect server version: 10.0.14.0. In all official manuals is information that if I use All-in-one installer to install ESET Bridge, the certificate will be added automatically. Edited November 23, 2022 by extor Link to comment Share on other sites More sharing options...
ESET Staff IggyPop 22 Posted November 24, 2022 ESET Staff Share Posted November 24, 2022 Hi @extor, yes, you are right I would advise you to contact our Support to investigate this issue as it should create the certificate. Thanks, Ingemar Link to comment Share on other sites More sharing options...
Anyelus_sk8 0 Posted January 30, 2023 Share Posted January 30, 2023 Hello, could you help me. I just updated my esetprotect console to version 10.0.14.0. I have 2 sites with http proxy installed. in http proxy in the configuration file I could change the default route and put it in another disk, for example the disk: D. but with bridge the part that says custom cache directory I don't know how the path to put should be. my environment is esetprotect windows server 2019. This is how I have it, I already gave permission to the network service folder. Link to comment Share on other sites More sharing options...
Recommended Posts