SEP ips signatures

Hello,
I have SEPM server 11.0.7101 which i apply the definination updates manually to be distributed to clients. No live update used just the SEP Management server.  The clients get the AV definitions updated but the firewall (although status is green) definitions are old.  I am making assumption that the ips signatures is what the definition date stamp is for the firewall.  Why arent the ips signatures loading?  BTW. The SEPM console also reports that the ips signatures are of the old date.  So it appears that the SEPM is not processing the ips signatures when the jdb file is loaded.  Thanks for your help.
coolmike2Asked:
Who is Participating?
 
arnoldConnect With a Mentor Commented:
You can only download the virus definitions:
http://www.symantec.com/security_response/definitions.jsp?pid=sep11_32
Everything has to be downloaded using live update. Look at live update administrator to download the updates at night. The connect it to the private LAN for the clients to use to update.
0
 
arnoldCommented:
What is the status of your management iris definitions?
Do you have live update retrieving data?
Have you considered setting up a local live update dministrator and letting it download the updates while configuring the clients to use it for updates in addition to the management server?
Double check your manager's live update control panel to see which options/products are selected there.
0
 
coolmike2Author Commented:
Arnold,
not sure what iris def's are?  No live update is not running since not possible for this private lan. I place the jdb file in a particular directory on the SEPM server.
Thanks
0
Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

 
arnoldCommented:
IPS not iris, it seem my word filler changed to a suggestion that I did not notice.
Downloading job files from Symantec download only deals with virus and not signatures if memory serves me right.
Check the sep management server for the version of signatures it has.  Any reason why you are not using the live update agent on the management server to update the various definitions?
0
 
coolmike2Author Commented:
I thought i had read somewhere that all feature content is included in the jdb files. could be wrong of course. The latest signature version is dated march of 2010.
I cant use the liveupdate feature because this is a private lan (no outside connectivity).  I could potentially use live update on the clients to point to the SEPM server for their updates but don't see a reason to do that since the SEPM server seems to be updating the AV defs just fine on the clients. Thanks again.
0
 
coolmike2Author Commented:
Its a nice option to have but unfortunately that cant be done. So how would i be able to manually import the ips signatures into my SEPM server?
0
 
arnoldCommented:
I'm unaware of other options.
In a way if the systems Have no external access, anti-virus feature is all that is needed.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.