While there are no problems with LanGuard operations with on-premise servers and computers, you are having issues with getting accurate scan results and pushing out patches to the remote devices.
This article provides information on the requirements for successful LanGuard operations on remote machines and answers whether LanGuard can handle scanning and patch deployment for the devices just connected to the internet.
While GFI LanGuard is primarily designed as an on-premise solution to patch vulnerabilities for machines connected to the local network, it can perform scanning and patching of any remote machines, even those not attached to the local network, as long as the required settings and permissions are present, which would be a task of the local networking team to ensure.
For example, if a remote machine name can be resolved to a reachable IP on the internet, all the required ports are open, and security permissions are met, LanGuard will be able to scan and patch it. However, for security purposes, it's highly recommended to use a VPN in such cases.
Also, to address the work from home model demands, our product team is working on a cloud-based management server project.
You can find related information, join the conversation, and add any thoughts on the Align LanGuard with the new WFH reality forum thread.