Applies To: WatchGuard Advanced EPDR, WatchGuard EPDR, WatchGuard EDR, WatchGuard EPP, WatchGuard EDR Core
Cache computers act as repositories of signature files, security patches, and other components used to update WatchGuard Endpoint Security installed on other computers and devices. You configure the use of cache computers in a Network Settings profile. For more information, go to Designate a Cache Computer (Windows computers).
There are two ways to use computers with the cache role:
- Automatically use the cache computers seen on the network — Computers that receive these settings automatically look for cache nodes on their network segment.
- Use the following cache computers (in order of preference) — Computers that receive these settings connect to the cache nodes specified in the list.
Automatic Mode
In this mode, a computer that starts a download uses cache computers found on the network that meet the requirements specified below. If multiple cache computers are found, WatchGuard Endpoint Security automatically balances the downloads so that a single cache computer is not overloaded.
When you designate a computer as cache, it broadcasts its status to the network segments to which its interfaces connect. All workstations and servers set to automatically detect cache nodes receive the notification and connect to the cache computer. If there is more than one designated cache node on the network segment, computers on the subnet connect to the most appropriate node based on the amount of free resources it has.
Occasionally, computers on the network set to automatically detect cache nodes check if there are new nodes with the cache role.
Download Requirements
When you configure a cache computer in automatic mode, the computer with the cache role assigned and the computer that downloads items from it must be on the same subnet. If a cache computer has multiple network cards, it is able to act as a repository on each network segment to which it is connected.
We recommend that you designate a computer with the cache role on each network segment on the corporate network.
All other computers automatically discover the presence of the cache and redirect their update requests to it.
In addition to being on the same subnet, the cache computer must have a WatchGuard Endpoint Security license assigned. The firewall must be configured to allow incoming and outgoing Universal Plug and Play (UPnP) and Simple Service Discovery Protocol (SSDP) traffic on User Datagram Protocol (UDP) port 21226 and Transmission Control Protocol (TCP) port 18226.
Manual Mode
In this mode, you select the cache computers that download data from WatchGuard Cloud. You order these computers in a list in the Network Settings. If the first computer in the list is not available, the computer tries the next computer until it finds one that works. If it cannot find any available computers, WatchGuard Endpoint Security will try to access the Internet directly.
When a computer has multiple cache nodes assigned, it does not automatically share downloads among them.
Download Requirements
The computer with the cache role assigned and the computer that downloads items from do not need to be on the same subnet.
The cache computer must have a WatchGuard Endpoint Security license assigned and the firewall must be configured to allow incoming and outgoing traffic on User Datagram Protocol (UDP) port and Transmission Control Protocol (TCP) port 21226, and TCP port 18226.