Internet Warning
If the PTK is unable to connect to the internet, you will see an Orange WARNING. This is because Internet access is not required to perform assessments. This status is mostly used to help debug issues with the PTKs failing to connect to the VPN.
Outbound internet issues are difficult for the PTK team to debug as there can be many layers deployed between the PTK and the internet. The most common issues encountered that prevent direct internet access are:
- DNS categorization
- Application introspection
- Required outbound proxy
- Incorrect DHCP or static network configuration
DNS Categorization
If your network deploys a DNS categorization service, ensure that the gateway.ptk.rapid7.com infrastructure is whitelisted for the PTK. The exact categorization information will vary depending on the service deployed and there is no specific category that can be applied to allow the PTK access.
Application Introspection
Next generation firewalls and application inspecting proxies can often cause connectivity problems for the PTK devices. Rapid7 PTKs are required to have outbound allows for:
- TLS/SSL
- OpenVPN
Outbound Proxy
The current configuration does not allow for full tunneling over an outbound proxy; an exception for the PTK is required.
Incorrect Network Information
If the device does not have the correct networking configuration, please reconfigure the device by following the steps in the Reconfigure Networking section.