laptops who are remote

Discussion in 'ESET NOD32 Antivirus' started by ramsus, Feb 23, 2011.

Thread Status:
Not open for further replies.
  1. ramsus

    ramsus Registered Member

    Joined:
    Aug 4, 2010
    Posts:
    8
    Is there any way to configure laptops who aren't local to the network that the ESET console resides on to report back to the console over the internet securely? If it is just a matter of specifying an host name that resolves externally and forwarding some ports, are there any best practices for securing this traffic?

    This is for ESET 4.0 with laptops running XP and Windows 7. We have a VPN but people aren't on the VPN all the time.

    Thanks!
     
  2. dmaasland

    dmaasland Registered Member

    Joined:
    Nov 10, 2010
    Posts:
    468
    It's just a matter of forwarding the right port. If you use a password for the remote administration, encryption to the connection will be applied.

    Code:
    Encryption
    
    Here are the conditions under which ESET Remote Administrator encrypts its communications:
    
    [B]Source	                                                    direction         	          Target	                                        Result[/B]
    ESET Remote Administrator Console      	            →	                                  ESET Remote Administrator Server  	encrypted
    NOD32 v2.x client	                                            →	                                  ESET Remote Administrator Server	        plaintext
    ESET Smart Security/ESET NOD32 Antivirus v3.0    →	                                  ESET Remote Administrator Server	        encrypted
    ESET Remote Administrator Server (replication)	    →	                                  ESET Remote Administrator Server	        encrypted
    Remote Installation Agent	                            →	                                  ESET Remote Administrator Server	        encrypted
    With Version 3.0, encryption is performed using the Blowfish algorithm when a correct username and password is provided.
    With Version 4.0, encryption is performed using the AES-256 (Advanced Encryption Standard) algorithm when a correct username and password is provided.
     
    Last edited: Feb 24, 2011
  3. jimwillsher

    jimwillsher Registered Member

    Joined:
    Mar 4, 2009
    Posts:
    668
    Yes, this works very well.

    We have dual profiles set up for contact the server. The first is the NETBIOS name (MPSERVER) on 2222, the second is a FQDN (av.ourdomain.com) on a high-numbered port (which the router forwards to 2222).


    Jim
     
  4. ramsus

    ramsus Registered Member

    Joined:
    Aug 4, 2010
    Posts:
    8
    Great - thanks all!
     
Thread Status:
Not open for further replies.