Go Premium for a chance to win a PS4. Enter to Win


ePO listening IP (conflict when have more than one NIC?)

Posted on 2009-04-05
Medium Priority
Last Modified: 2013-12-09
Hi experts,

Lately I see that my servers managed under ePO were not doing the DAT upgrades as scheduled, and I think the reason for that is because the ePO server was added a new NIC and IP.

Previously, my network consist of only one LAN (LAN A - class B).  Then we added another group of machines (LAN B - class C) as well as adding a NIC to ePO server to manage them.  I see that when I start ePO, highlight the server, under the "Setting" tab, it shows the ePO's IP as what I added later on (LAN B - class C).  Since then, the machines from LAN A seems not doing anymore DAT update.

I wonder if that has happend to anyone else before?  How did you resolve that?  Was I doing it wrong by just adding another NIC to manage the newly-added group, while I should have build another ePO server for LanB , receive replicate from the master (Lan A)?

Thank you very much!
Question by:wingkchan
  • 3
  • 3

Expert Comment

ID: 24074768
Check this link out


There is a description of how to bind your EPO server to a certain NIC.

Author Comment

ID: 24074937
Kentrix70 thanks for the reference.  If I'd read this post earlier, I could have try out the IP set on the server.ini file.... what I did right now was temporarily disabled the new NIC, so the ePO server falls back to the original IP... then I push install the agents all over again to the machines.  This solved the update problem on Lan A.

but as for Lan B  (new group of computers that has no connection to Lan A), do you know what's the best way to manage them?

Expert Comment

ID: 24074973
I am not sure this is possible with EPO.
Have you considered setting up a router to connect the 2 networks.
Then all your clients could point to the same EPO server,
and things would be just routed as needed.
I could help you out with a network setup, if you wish.

The router, which is default gateway for the machines on the LAN B,
would need a route statement to know, that this new router is the gateway
to your LAN A, where the EPO-server resides.
When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.


Author Comment

ID: 24075029
I am afraid that I can't try out your recommendation Ken.  The Lan B servers were added to our office from another business department.  We only host them in our computer room, do their backups, and keep their anti-virus up-to-date. Other usage and developments are not part of our manage scoop, so I try not to mess with their network infrastructure.

But thank you kindly for your offer to help.

Expert Comment

ID: 24075122
You could do the reverse of my suggestion.
Put the EPO-server on the LAN B,
and setup a router to deal with traffic from your LAN A.
Then you should add a route on the default gateway for your lan,
and in that way, you could get the same result.
LVL 16

Accepted Solution

legalsrl earned 1500 total points
ID: 24162658
Evening all,

Firstly, the best practice here is to deploy a Super Agent to a machine in the additional subnet and leave ePO exactly the way it was.

The Superagent is basically a miniature ePO that allows you to limit the traffic from your new subnet as all the agents will talk to the Superagent rather than the ePO server

The Superagent will then check in to the ePO server

I would take the additional NIC out of the server and use a Super Agent

let me know if you need more instructions


Author Closing Comment

ID: 31566900
Thanks Legalsrl for your suggestion.  I was thinking about using the SuperAgent to keep the machines on another location secured.  I will consider that when that project is underway.  thanks!

Featured Post

Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I recently had to create a utility which aim is to update McAfee's Virusscan and that had to be launched from a command line. I thought I’d share my experience with you. Why is it useful to be able to update an Antivirus from the command line?…
HOW TO REMOTELY CLEAN MEROND.O WITH ESET SILENTLY PROBLEM       If you have the fortunate luck to contract the Merond.O virus on your network, it can be quite troublesome to remove as it propagates to network shares on your network. In my case, the …
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

782 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question