Configuring Site Servers
Example of a Root Site Server configuration:
Site Server Topology
Configuration Options: General
1. Type
- Root - The top level Site Server that reports to the FTK Central service, and can collect from on-network targets.
- Private - A child Site Server that reports to a parent Site Server, and can collect from on-network targets.
- Private (Protected) - A child Site Server that reports to a parent Site Server when only one-way communication is allowed, and can collect from on-network targets.
- Public - A child Site Server that reports to a parent Site Server, and can collect from off-network targets.
2. Friendly Name
A user-defined name to easily identify the Site Server
3. Logging Level
Level of message detail to record in site_server.log. Default Value: ERROR
4. Agent Port
Port used by on-network agents. Default Value: 3999
5. Catch All Delay(s)
When a Site Server is looking for new jobs every (X) mins, this setting will delay that cycle by the specified interval. This is useful when you mark a particular site server to catch all IP addresses and you want it to execute only if others have failed.
Default Value: 0
6. Agent Checkin Log
This is available only when the Type is selected as Public. Upon enabling the Agent Checkin Log, a log will be created which will list all the check-in details for the Agent.
Configuration Options: Secure Communications
Note: See Agent Certificate Requirements for Private, Public, and Agent Requirements.
1. Private Certificate
The private certificate used to communicate with the FTK Central service and other Site Servers.
2. Public Certificate
The public certificate used to communicate with the FTK Central Service and other Site Servers.
3. Agent Certificate
The private certificate used to communicate with Agents.
Configuration Options: Database
1. System Password
Password to the locally-installed PostgreSQL database where Site Server stores its settings and metadata.
2. Database Port
Port used by the locally-installed PostgreSQL database where Site Server stores its settings and metadata. Default Value: 5432
Configuration Options: IP Configuration
1. Internal Addresses/FQDN
Internal (on-network) IP or FQDN of a Public Site Server.
2. External Addresses/FQDN
External (internet-facing) IP or FQDN of a Public Site Server.
3. Public Port
Port used for off-network Agent heartbeat/check-in. Default Value: 54545
4. Heartbeat Port
Port used for on-network Agent heartbeat/check-in. Default Value: 54555
5. Client Port
Port used for FTK Central to Root Site Server communication. Default Value: 54321
6. SS to SS Port
Port used for Site Server to Site Server communication. Default Value: 54548
Configuration Options: Results
1. Results Directory or UNC Path
Path to store collected data in temporarily.
2. Results Share Domain
Domain to use if Results Directory is a UNC path.
3. Results Share Username
Username to use if Results Directory is a UNC path.
4. Results Share Password
Password to use if Results Directory is a UNC path.
Configuration Options: Site Server System
1. Parent Instance
The parent of a Private or Public site server, in the format IP/FQDN:Port.
2. Children Instances
The children of a Root or Private site server, in a comma-delimited list in the format IP/FQDN:Port.
3. Public Instances
A list of all an environment's available Public Site Servers, in a comma-delimited list in the format IP/FQDN:Port.
Note: This is used to notify Public Agents of other available Public Site Servers that may be closer/faster.
Configuration Options: Locality
1. Managed Subnet Address(es)
A comma-delimited list of CIDR ranges that includes all targets the given Site Server is allowed to collect from.
Configuration Options: Configuration
1. Max Client Connections
The number of clients/applications that are allowed to connect to the Client Port. Default Value: 10
2. Max Incoming Threads
The number of threads created for incoming connections from Agents over the Public Port. Default Value: 50
3. Max Outgoing Threads
The number of threads created for outgoing connections to Agents over the Public Port. Default Value: 50
4. Max Event Threads
The number of threads created for handling agent events that were previously added to the Site Server database. Default Value: 50
5. Replication Threads
The number of threads created for replicating data between Site Servers. Default Value: 5
6. Retry Count
The number of retries to make when replicating data. Default Value: 5
7. Retry Delay (ms)
The time between retries. Default Value: 100
Configuration Options: Bandwidth Control
1. bits/second in from SiteServer
Max bandwidth allowed in from other Site Servers. Default Value: Unlimited
2. bits/second out to SiteServer
Max bandwidth allowed out to other Site Servers. Default Value: Unlimited
3. bits/second in from Agent
Max bandwidth allowed in from Agents. Default Value: Unlimited
4. bits/second out to Agent
Max bandwidth allowed in from Agents. Default Value: Unlimited
This article is verified as of version 7.6 SP3