ISA 2004 & AVG Antivirus

The network /server setup is as follows:

5 server 2003 Enterprise machines all on the same IP set (10.0.0.xx).  Andrew runs AVG antivirus and is the server all other servers and workstations look to for updates.  The updates are handled via HTTP.

three of my five servers can see andrew fine and can pull AVG updates from Andrew.  However, Matthew, my ISA 2004 box, cannot see Andrew and cannot pull AVG updates.  By "see" I mean in the AVG configuration screen, when I test the connection to Andrew, it fails.  All of my servers are setup for remote administration in AVG and they are all setup the same.  My ISA box cannot pull it's updates from or communicate with Andrew.  I feel that since it's my ISA server, it must be a rule issue or something related to ISA.  Anyone have any ideas?

Thanks

Cliff
crp0499CEOAsked:
Who is Participating?
 
Keith AlabasterEnterprise ArchitectCommented:
Hello again crp

Have you created a two way rule on the ISA server to allow ALL protocols from local host & internal TO local host & internal?
Try it and see if this helps.
If it does, open the monitoring - logging tab
click on start query
run the avg update and see what ports pass. We can then edit the ALL protocol rule and create/add/amend to put in a specific protocol matching the requirement.

reagrds
keith
0
 
crp0499CEOAuthor Commented:
We have.  When we do add the internal to internal rule, RDP and Surf Control both cease to operate.
0
 
crp0499CEOAuthor Commented:
OH, Hi Keith...

This is the weirdest thing.  Any internal to internal rule craters RDP and Surf Control.  Turn it on, crater.  Turn it off, everything works fine.

All PC's and servers EXCEPT our ISA can connect to our remote admin for AV.  
0
WEBINAR: 10 Easy Ways to Lose a Password

Join us on June 27th at 8 am PDT to learn about the methods that hackers use to lift real, working credentials from even the most security-savvy employees. We'll cover the importance of multi-factor authentication and how these solutions can better protect your business!

 
Keith AlabasterEnterprise ArchitectCommented:
So what traffic is been blocked in the ISA log?
0
 
crp0499CEOAuthor Commented:
When I run a query, the connection opens, then closes.  I see no denials to any services.  Also, when I attempt to edit my existing AVG rule to allow the ISA access to the AVG server, my RDP and Surf Control stop working.  I have noted that AVG uses FTP to pull updates and I have an existing FTP rule.
0
 
Keith AlabasterEnterprise ArchitectCommented:
Does it not show a port or protocol though when the connection gets created?
0
 
crp0499CEOAuthor Commented:
it flashes so fast, I can barely see it.  tomorrow I'll see what I can do about getting a better read on the query.
0
 
Keith AlabasterEnterprise ArchitectCommented:
once it passes, right-click inside the log data window  and just click stop query. You can then scroll back up at your leisure :)
0
 
Keith AlabasterEnterprise ArchitectCommented:
thank you :)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.