Sophos Central Server Protection and Citrix PVS Image

Hi all,

I'm looking for instructions on how to install Sophos Intercept X with Citrix PVS services.

The instructions I've already found all want to disable certain Sophos services to delete the machine_id file, and that's where the problem comes in.

Citrix PVS services have the special feature that they boot via PXE and do not have their own virtual hard disk. As soon as the connection between the PVS master server and the PVS client/golden image is disconnected, the PVS client dies.
The endpoint on the master, in turn, immediately stops communicating with the PVS client because some Sophos services are stopped on the PVS client and thus the health status is red. So here we have the classic chicken-and-egg problem.
In an ideal world, I would like to configure an exception on the PVS server so that it can still communicate with the client, but only on ports 6901, 6902, 6905 UDP.

Support was unable to help with this in the past because they didn't understand the problem. 

Best,

Sebastian



Edit tags
[edited by: GlennSen at 10:13 AM (GMT -8) on 4 Nov 2024]