I am having an issue with my communication between the server and agent.
Partial Log:
2018/09/10 18:00:30 ossec-remoted: ERROR: (1403): Incorrectly formatted message from agent '036' (host 'ip').
2018/09/10 18:03:37 ossec-remoted: ERROR: (1403): Incorrectly formatted message from agent '036' (host 'ip').
i check this link http://ossec-docs.readthedocs.io/en/latest/faq/unexpected.html#the-communication-between-my-agent-and-the-server-is-not-working-what-to-do
and i done step by step methods.
but nothing happened. keys is correct and ip is any. i have a old agent that works fine and its ok.
but when i want add new agent this problem occur .
i try tcp connection method also, but nothing.
Thanks!
best regards
/var/ossec/bin/manage_agents -r 036/var/ossec/bin/ossec-control stop// 3.1 Check if authd is already running
ps aux | grep authd
// root 5383 3.0 0.0 177508 3768 pts/1 Sl+ 09:14 0:00 /var/ossec/bin/ossec-authd
// 3.2 Start authd if it's not running
/var/ossec/bin/ossec-authd /var/ossec/bin/agent-auth -m <manager_ip>
2018/09/11 09:15:34 agent-auth: INFO: Started (pid: 31647).
WARN: No authentication password provided.
INFO: Connected to 192.168.1.193:1515
INFO: Using agent name as: jesus-msi
INFO: Send request to manager. Waiting for reply.
INFO: Received response with agent key
INFO: Valid key created. Finished.
INFO: Connection closed.systemctl restart wazuh-managersystemctl restart wazuh-agent