• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1255
  • Last Modified:

Symantec Live update stopped after installing ISA 2004.

Hi Experts,

I have windows 2003 domain, in which I have setup symantec anti-virus corporate edition 10. It is working fine and updating all the client machines from central location.

I have recently seutp ISA 2004 server on one of my windows 2003 member server for firewall purpose.

I found after installing  that my ISA machine is not able to get virus definitions update from my symantec corporate edition server.

What ports I need to open in my ISA to enable the virus def. updates on ISA. Both machines are on same LAN subnet.

Awaiting for your reply.


  • 2
1 Solution
Leon FesterSenior Solutions ArchitectCommented:
Liveupdate runs on normal http traffic...According to my Symantec Corporate v10 and ISA server 2004 monitoring.

By default ISA firewalls do NOT allow any traffic through the firewall unless you've created a suitable rule.

I'd suggest that you add the following as your first rule in ISA Server.
Right-click firewall policy,
Click 'new', 'access rule'
Enter a name e.g. 'http traffic from isa server to external' - NEXT
Select 'Allow' -> NEXT
Select 'Selected protocols'
Click 'Add' and then select http under the list of protocols.
click 'Add', Click 'Close' -> NEXT
Click 'Add', select 'Localhost' and 'Internal' under the list of networks -> CLOSE -> NEXT
Click 'Add', Select 'external' under the list of networks -> CLOSE -> NEXT

Test the liveupdate from there...you can use the Monitoring tool to check the traffic going in and out your ISA server. P.S. Can you browse to any other sites via your ISA Server?
GlobrinAuthor Commented:

I have set the rule according to you . I have installed independent symante antivirus unmanaged client on ISA which wll update from live update server. But when I click update on live update it is saying your definition is already updated. I have also monitored ISA for allowe connection and it is saying on port 80 it is communicating to live update server.

My old definition is of Apr 12, 2005 , and it is not updated to the recent date. I have reboot the ISA as well.

please help.
Leon FesterSenior Solutions ArchitectCommented:
Did your Symantec license expire?

Liveupdate will fail if you software license has expired.

If the unmanaged client could update, then you symantec console should also be able to update.

Check the historical data on ISA for when Symantec Console was supposed to update, and check what traffic/errors are reported on the firewall.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now