<div>
<div class="content wysiwyg-content">
I am needing to allow our Symantec AV Server through our ASA 5510 to download updates. &nbsp;I am only wanting to allow the server out to the symantec site(s). &nbsp;I contacted Symantec to get a list of IP Addresses they use for their definition downloads. &nbsp;Symantec indicated they reference a domainname/url and they don't have a list of IP's to give out. &nbsp;They indicated I only need to reference liveupdate.symantec.com in our firewall and it will work. &nbsp;How do I create an access-list rule in the ASA to reference liveupdate.symantec.com?
</div>
</div>


I am needing to allow our Symantec AV Server through our ASA 5510 to download updates.  I am only wanting to allow the server out to the symantec site(s).  I contacted Symantec to get a list of IP Addresses they use for their definition downloads.  Symantec indicated they reference a domainname/url and they don't have a list of IP's to give out.  They indicated I only need to reference liveupdate.symantec.com in our firewall and it will work.  How do I create an access-list rule in the ASA to reference liveupdate.symantec.com?

Creating Access list rule on ASA5510 using a domain name

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).