[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Symantec Live update stopped after installing ISA 2004.

Posted on 2006-07-12
5
Medium Priority
?
1,252 Views
Last Modified: 2013-11-16

Hi Experts,

I have windows 2003 domain, in which I have setup symantec anti-virus corporate edition 10. It is working fine and updating all the client machines from central location.

I have recently seutp ISA 2004 server on one of my windows 2003 member server for firewall purpose.

I found after installing  that my ISA machine is not able to get virus definitions update from my symantec corporate edition server.

What ports I need to open in my ISA to enable the virus def. updates on ISA. Both machines are on same LAN subnet.

Awaiting for your reply.

regards,

Globrin.
0
Comment
Question by:Globrin
  • 2
3 Comments
 
LVL 26

Accepted Solution

by:
Leon Fester earned 500 total points
ID: 17090739
Liveupdate runs on normal http traffic...According to my Symantec Corporate v10 and ISA server 2004 monitoring.

By default ISA firewalls do NOT allow any traffic through the firewall unless you've created a suitable rule.

I'd suggest that you add the following as your first rule in ISA Server.
Right-click firewall policy,
Click 'new', 'access rule'
Enter a name e.g. 'http traffic from isa server to external' - NEXT
Select 'Allow' -> NEXT
Select 'Selected protocols'
Click 'Add' and then select http under the list of protocols.
click 'Add', Click 'Close' -> NEXT
Click 'Add', select 'Localhost' and 'Internal' under the list of networks -> CLOSE -> NEXT
Click 'Add', Select 'external' under the list of networks -> CLOSE -> NEXT
CLICK FINISH.

Test the liveupdate from there...you can use the Monitoring tool to check the traffic going in and out your ISA server. P.S. Can you browse to any other sites via your ISA Server?
0
 

Author Comment

by:Globrin
ID: 17096977


I have set the rule according to you . I have installed independent symante antivirus unmanaged client on ISA which wll update from live update server. But when I click update on live update it is saying your definition is already updated. I have also monitored ISA for allowe connection and it is saying on port 80 it is communicating to live update server.

My old definition is of Apr 12, 2005 , and it is not updated to the recent date. I have reboot the ISA as well.

please help.
0
 
LVL 26

Expert Comment

by:Leon Fester
ID: 17097180
Did your Symantec license expire?

Liveupdate will fail if you software license has expired.

If the unmanaged client could update, then you symantec console should also be able to update.

Check the historical data on ISA for when Symantec Console was supposed to update, and check what traffic/errors are reported on the firewall.
0

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Ransomware - Defeated! Client opened the wrong email and was attacked by Ransomware. I was able to use file recovery utilities to find shadow copies of the encrypted files and make a complete recovery.
Let's take a look into the basics of ransomware—how it spreads, how it can hurt us, and why a disaster recovery plan is important.
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…
Suggested Courses

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question