If we receive the error message that the RPC server is unavailable, how go we go about discovering the root cause of the problem? PORTQRY is a tool from Microsoft that allows you to test connectivity from one server to another. To test connectivity to a monitored server, go to the Probe or Collector that is attempting to collect events or run the file walk and failing. Run the following command:
portqry –n ServerName –p TCP –e 4972
The command should be able to:
1) Resolve the host name
2) Connect to the port 4972 (which Varonis uses to connect to the service)
3) See that the port is in Listening state.
If the response is Filtered than there is a firewall or some other service blocking the connection. If the response is Not Listening than the Varonis Filer Logger is not running or has errors. At that point, go to the server and check the status of the service.
Hi.. Could you please suggest resolution if we manually start Varonis Filer Logger and it is stopping automatically with the message..
ReplyDelete'some service stops if they are not in use by any other service or programs'
I would look at the Varonis event log on file server in question to see the root cause of the problem. The "Varonis Filer Monitor" also has to be running for this to work.
ReplyDeleteHi Arthur, I encountered a weird case which 1st telnet always fail but for next telnet is succeful. thanks
ReplyDeleteI wonder if the issue is with you DNS system so that the host name is resolving incorrectly. What happens if you telnet using IP address?
Delete