Netskope Community
-
Forums
ProductsCommunity Resources
-
Learn
Education, Training, Certification, and Thought LeadershipCommunity Resources
-
Groups
Community GroupsCommunity Resources
-
Events
Community Resources
- Support
- Netskope Community
- Products
- CASB
- Any ideas on error UPD errors and nsClientFLow
Any ideas on error UPD errors and nsClientFLow
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-09-2023
12:29 PM
- last edited on
01-27-2023
10:22 AM
by
JulieB
Hello,
New user here.. I have a Mac device that doesn't want to connect to the internet at all unless we disable NetSkope. I noticed a ton of errors in the logs that show this as well as UDP like the one below and well as the Network interface errors. Any help will be much appreciated
stAgentNE p3662 t6691 error nsClientFlow.mm:150 nsClientFLow Flow networkInterface is nil
stAgentNE p3662 t6691 info bypassAppMgrUDP.cpp:210 BypassAppMgr Blocking UDP connection from process: safari,
- Labels:
-
UPD errors and nsClientFLow
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-09-2023 12:35 PM
Do you have Cloud Firewall licensed by chance, and if so what is being steered in the steering configuration that you are assigned?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-09-2023 12:44 PM
Sorry for rookie response but Where would I find this info so I can provide this? As far as I can tell we are not
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-09-2023 12:54 PM - edited 01-09-2023 12:54 PM
Unfortunately there is no way in the UI to see what you are licensed for. To figure out if you have Cloud Firewall enabled : Right click on the agent, and select Configuration, you'll see what steering configuration your client gets.
Then from there, go into Settings -> Security Cloud Platform -> Steering Configuration and open the steering configuration and see if All Traffic is listed.
Screenshots attached showing some of the process.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-10-2023 04:03 AM
Ok thanks ... I took a peek within the console but looks like I don't have full permissions to see it there but what I can see on the the endpoint agent side is "all traffic" is listed in the steering type. I also took a look at nsconfig.json but I did not see firewall referenced there.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-10-2023 04:08 AM
If All Traffic is noted in the steering type, then it sounds like your organization has Cloud Firewall. I have NGSWG enabled (no CFW), and I have All web Traffic referenced on my agent.
With Cloud Firewall, there is a default deny at the bottom of the Real Time Policy page, which will block non-80/443 traffic. I would get with your admin, or if you are still in the deployment phase your PS partner to discuss options on how to utilize CFW in a pilot group phase.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-09-2023 01:19 PM
We opened a support ticket not too long about UDP errors in the logs (very much like the one you are showing). The answer we got was related to QUIC (Quick UDP Internet Connection). Netskope is blocking and falling back to non-QUIC. We are told this error is more informational than concerning. <shrug>
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
- Issues with Facetime in Next Gen Secure Web Gateway (SWG)
- Problem with DNS in Private Access for ZTNA
- AWS CLI SSL Certificate Errors on macOS in Next Gen Secure Web Gateway (SWG)
- NPA and SSH/SCP Error in Private Access for ZTNA
- SMTP Relay Backend Error On Verifying Email Domain in Data Loss Prevention (DLP)
-
CASB
30 -
Netskope Agent
7 -
Client
7 -
DLP
6 -
API-Enabled Protection
6 -
API
5 -
NSClient
5 -
NG-SWG
4 -
netskope client
3 -
Real-time Policy
3 -
alerts
3 -
Unsanctioned apps
3 -
vpn
2 -
MS Teams
2 -
Threat Protection
2 -
steering
2 -
Sanctioned apps
2 -
update
2 -
policy
2 -
incidents
2 -
CCI
2 -
block
2 -
Troubleshooting
2 -
install
2 -
Upgrade
2 -
Real time policy
2 -
Collaboration
1 -
Support
1 -
questions
1 -
policies
1 -
Privileges
1 -
version
1 -
Messaging
1 -
steering exception
1 -
IDC
1 -
Reports
1 -
Office 365
1 -
HTTP Header Profile
1 -
Next Gen SWG
1 -
APP instance
1 -
Real time protection
1 -
cisco
1 -
API Throttling
1 -
ssl
1 -
cloud update
1 -
storage
1 -
Webinar
1 -
Authentication
1 -
block IE11 traffic
1 -
ssl error
1 -
corrupted state
1 -
fedramp
1 -
Netskope
1 -
settings
1 -
certificate
1 -
Adobe
1 -
SWG
1 -
MacOS
1 -
other
1 -
trust
1 -
Allowlist
1 -
ztna
1 -
configuration
1 -
Managed apps
1 -
Netskope Endpoint Client
1 -
Unique Device ID
1 -
NPA
1 -
private access
1 -
VDI
1 -
Office365
1 -
Unmanaged apps
1 -
Zero Trust
1 -
VMware
1 -
jumpcloud
1 -
malware
1 -
google
1 -
Facebook
1 -
Reporting
1 -
UPD errors and nsClientFLow
1 -
blockuploads
1 -
security posture check
1 -
Messenger
1 -
Azure-AD
1 -
Compromised Credentials
1 -
ServiceNow
1 -
sku
1 -
Sharepoint
1 -
whatsapp app
1 -
application assessment request
1 -
data usage
1 -
APIv2
1 -
Onedrive
1 -
Netskope Client installation mechanism
1 -
steer traffic
1 -
AutoUpdate
1 -
Outlook
1 -
googledocs
1 -
roles
1
In order to view this content, you will need to sign in to your account. Simply click the "Sign In" button below
Sign In