ESET PROTECT is the renamed ESET Security Management Center (ESMC), the new name is used since version 8.0. It uses the agent/server communication protocol introduced with ESMC 7.0. The communication protocol uses TLS and HTTP2 protocols to go through proxy servers, self-recovery features, and a persistent connection that improves overall communication performance.
ESET provides a pre-configured Apache installer. The user can also use other proxy solutions (besides Apache HTTP Proxy) that fulfill the following conditions:
The configuration of other proxy solutions is not provided or supported by ESET. Other solutions may not support caching of ESET LiveGuard Advanced communications.
The ESET PROTECT Virtual Appliance contains a correctly pre-configured Apache HTTP Proxy. We recommend you use the new appliance instead of upgrading the old one.
To keep your proxy safe and well configured, replace your old ERA Proxy - Virtual Appliance with the new version. ESET PROTECT does not provide a stand-alone proxy configuration as ERA 6.x did. We recommend you deploy a new ESET PROTECT Server - Virtual Appliance. The new server is not used as an administrative server but as a proxy. The correctly configured Apache HTTP Proxy is included in the ESET PROTECT Virtual Appliance download.
/root/eset_installers/Agent-Linux-x86_64.sh
/root/eset_installers/Agent-Linux-x86_64.sh \
--skip-license \
--hostname=10.1.179.36 \
--port=2222 \
--webconsole-user=Administrator \
--webconsole-password=aB45$45c \
--webconsole-port=2223
System V init | Systemd |
---|---|
service eraserver stop |
systemctl stop eraserver |
service mysql stop |
systemctl stop mysql |
service tomcat stop |
systemctl stop tomcat |
To prevent ESET PROTECT and MySQL services from starting after reboot, disable them:
Systemd |
---|
systemctl disable eraserver |
systemctl disable mysql |
systemctl disable tomcat |
nano /etc/httpd/conf.d/proxy.conf
AllowCONNECT 443 2222
and change 2222
to the number of your port.systemctl restart httpd
Click Settings, select ESET Management Agent.
Expand Connection, click Edit server list next to Server connects to.
Click Add.
In the Host field, type the applicable address (the address must match what the agent uses in the configuration) of your ESET PROTECT Server and click OK.
Click Save.
In the Policy settings drop-down menu, select Append.
Expand Advanced Settings. In the HTTP Proxy section, select Different Proxy Per Service from the Proxy Configuration drop-down menu.
Next to Replication (to ESET PROTECT Server), click Edit.
Choose one computer that is connected via ERA Proxy and assign the new policy to that test client.
After a few minutes, verify the computer is still connecting to the ESET PROTECT Server.
Verify the client is connected to the ESET PROTECT Server. Continue upgrading the remaining clients.
After the policy is applied, verify all clients are connecting to the ESET PROTECT Server.
Run an ESET PROTECT Components Upgrade Task.
If all clients are connecting to the ESET PROTECT Server after the upgrade is finished, proceed to section V. below.
Click Settings.
In the Policy settings drop-down menu, select Replace.
Click Finish to save and apply the policy.