Uploaded image for project: 'ZABBIX BUGS AND ISSUES'
  1. ZABBIX BUGS AND ISSUES
  2. ZBX-16541

Wrong source IP address for passive checks if Zabbix server is in different subnet

XMLWordPrintable

    • Icon: Problem report Problem report
    • Resolution: Won't fix
    • Icon: Minor Minor
    • None
    • 4.2.5
    • Agent (G)
    • Windows Server 2012 R2

      Steps to reproduce:

      1. Zabbix server is on subnet A (IP 10.23.0.64)
      2. Agent is on subnet B (10.23.1.128/27)
      3. Firewall allows communication between both subnets (no NAT)
      4. Agent allows passive checks from IP 10.23.0.64

      Result:
      No passive communication possible. Logfile shows: failed to accept an incoming connection: connection from "10.23.1.129" rejected, allowed hosts: "10.23.0.64"

      Expected:
      The agent should see incoming connections from 10.23.0.64 and not from 10.23.1.129 (this is the gateway IP address). TCPView (Sysinternals) shows correct IP address if I do a telnet from Subnet A to the agent machine.

      Workaround:
      Add gateway IP address to allowed server IPs. This is a bit cumbersome as we have many subnets to monitor and have one installation package to deploy. We manually need to add the specific gateway IP. 

            Unassigned Unassigned
            mischa.szeker@acribis.ch Mischa
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: