Proxy doesn't work

Question

Proxy doesn't work

Opened this issue 4 months ago · 0 comments

jmvizcainoio commented 4 months ago

Bug report

What operating system and version are you using?

Debian bullseye
osqueryd version 5.11.0

20.04.3 LTS (Focal Fossa)
ubuntu

What version of osquery are you using?

5.11.0

What steps did you take to reproduce the issue?

 /opt/orbit/bin/osqueryd/linux/stable/osqueryd --pidfile=/opt/orbit/osquery.pid --database_path=/opt/orbit/osquery.db --extensions_socket=/opt/orbit/orbit-osquery.em --logger_path=/opt/orbit/osquery_log --enroll_secret_env ENROLL_SECRET --tls_hostname=fleet.dns.server --enroll_tls_endpoint=/api/v1/osquery/enroll --config_plugin=tls --config_tls_endpoint=/api/v1/osquery/config --config_refresh=60 --disable_distributed=false --distributed_plugin=tls --distributed_tls_max_attempts=10 --distributed_tls_read_endpoint=/api/v1/osquery/distributed/read --distributed_tls_write_endpoint=/api/v1/osquery/distributed/write --logger_plugin=tls,filesystem --logger_tls_endpoint=/api/v1/osquery/log --disable_carver=false --carver_disable_function=false --carver_start_endpoint=/api/v1/osquery/carve/begin --carver_continue_endpoint=/api/v1/osquery/carve/block --carver_block_size=8000000 --tls_server_certs /opt/orbit/certs.pem --augeas_lenses /opt/orbit/lenses --force --flagfile /opt/orbit/osquery.flags --host-identifier uuid --proxy_hostname=http://10.169.183.165:8443
W0219 15:39:13.650493 2082713 enroll.cpp:124] Could not get enroll secret from environment variable: ENROLL_SECRET
W0219 15:39:13.697268 2082713 tls_enroll.cpp:101] Failed enrollment request to https://fleet.dns.server/api/v1/osquery/enroll (Request error: Failed to connect to proxy host http://xxx.xxx.xxx.xxx:8443: Service not found) retrying...

What did you expect to see?

Osqueryd doesn't connect to the fleetdm server when i configure to do using the proxy.

I was check the proxy and works fine because orbit download a file from fleet before start osqueryd

What did you see instead?

W0219 15:39:13.697268 2082713 tls_enroll.cpp:101] Failed enrollment request to https://fleet.dns.server/api/v1/osquery/enroll (Request error: Failed to connect to proxy host http://xxx.xxx.xxx.xxx:8443: Service not found) retrying...

I was try replace the proxy ip address by the dns proxy but the error is the same. I think that proxy_hostname doesn't work.