Customer installing a DSA might encounter connectivity issues in Microsoft Cluster Environments.
This can either affect a Microsoft Failover File Cluster or a Microsoft SQL Cluster.
To resolve the issue:
- Create a customized firewall rule allowing incoming TCP/UDP port listed on 3343 and 49152-65535.
- Assign the custom firewall rule to the target Deep Security Agent. The said ports are required for MS Cluster Service to allow multi-node communication between the MS Cluster Management Server and cluster nodes.
- You may change the Source IP value to Incoming Traffic instead of Any.
The nodes should now be working normally. For more information, refer to this Microsoft article: Service overview and network port requirements for Windows.