home

Security Service Edge

Mobile Endpoint SecuritySecurity Service Edge
Mobile Endpoint SecuritySecurity Service Edge

Lookout Product Documentation

Find answers about using and optimizing Lookout products.

Show Contents

Security Service Edge

Troubleshooting

Unable to Establish Connection to Private Apps

Verify Whether Node Services Are Running

  1. In the Management Console, select Administration > Node Management.
  2. Expand the correct node to verify the utilization data.
  3. Connect to the on-premise node where you installed the connector.
  4. Launch a terminal and run this command: sudo service node-server status

    These status messages are displayed based on your OS version:

    Operating system Status (Displayed output) Description
    Ubuntu 
    Active: active (running)
    		 Indicates that the node server service is running.
    inactive (dead)
    		 Indicates that the node server service is not running.
    RHEL 
    Running
    		 Indicates that the node server service is running.
    Not running (process not found)
    		 Indicates that the node server service is not running.

    If the service is not running, run this command to start the node service:

    sudo service node-server start

    Verify Whether Tunnel Is Established

  5. In the Management Console, select Administration > Node Management.
  6. Verify that the ZTNA TUNNEL column displays a status of Connected.
  7. Sign in to the node where you installed the connector.
  8. Run this command to display details about the ZTNA tunnel and verify whether the service is running: 
    sudo swanctl -l

    If the tunnel is successful, the connection displays a status of ESTABLISHED. If not, the connection displays a status of Connecting.

  9. If the tunnel is not established, the local firewall might be blocking the required outbound ports.
    Run these commands in a terminal session to open the required ports on Ubuntu: 
    sudo ufw allow out 500/udp sudo ufw allow out 4500/udp sudo ufw allow out 443/tcp sudo ufw status
  10. Restart the services to test the new settings with these commands: 
    sudo service node-server start sudo service node-server stop
  11. Check the status of the service with this command: 
    sudo service node-server status

    These status messages are displayed based on your OS version:

    Operating system Status (Displayed output) Description
    Ubuntu 
    Active: active (running)
    		 Indicates that the node server service is running.
    Active: inactive (dead)
    		 Indicates that the node server service is not running.
    RHEL 
    Running
    		 Indicates that the node server service is running.
    Not running (process not found)
    		 Indicates that the node server service is not running.
  12. Run this command from the terminal and verify the connection:

    sudo swanctl -l

    If the tunnel is established, the connection displays a status of ESTABLISHED.

Last updated: September 30, 2024

lookout-footer

Legal Privacy Policy Cookie Policy Transparency Report Compliance Info Compliance Info (Gov)

© 2024 Lookout, Inc. LOOKOUT®, the Lookout Shield Design®, LOOKOUT with Shield Design® and the Lookout multi-color/multi-shaded Wingspan Design® are registered trademarks of Lookout, Inc. in the United States and other countries. DAY OF SHECURITY®, LOOKOUT MOBILE SECURITY®, and POWERED BY LOOKOUT® are registered trademarks of Lookout, Inc. in the United States. Lookout, Inc. maintains common law trademark rights in EVERYTHING IS OK, PROTECTED BY LOOKOUT, CIPHERCLOUD, and the 4 Bar Shield Design.