RE: Is Symantec Antivirus 10.1 a usable product?
- From: Stew <Stew@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 15 Mar 2007 12:40:18 -0700
Sure, I have it working just fine. IMHO you should open some ports and also
provide exceptions for 3 or 4 programs. Mine works smooth as silk every time
now, and I'm using all the bells and whistles, including ISA 2004. The
central administration console is awesome. If you want a "recipe" for the
config:
A. ISA 2004 Settings:
From the Server Desktop:
1. Open "ISA Server Management"
a. In the left hand tree browse to:
Configuration=> General=> Define Firewall Client Settings.
b. Click on the "Application Settings" tab.
c. Click on "New".
d. Define settings as follows (without using the quotation marks):
Application: "Lucoms~1.exe"
Key: "ProxyBindIP"
Value: "1"
e. Click "OK", then exit ISA Server Management,
making sure to apply all changes during the exit.
B. Windows Firewall Group Policy Settings:
From the Server Desktop:
1. Browse to: Start=> Administrative Tools=> Group Policy Management.
2. In Group Policy Management, browse to:
Forest:yourdomain.local=> Domains=>
Default Domain Policy=> yourdomain.local=> Default
Domain Policy.
3. Right click on Default Domain Policy and select "edit".
4. Browse to:
Computer Configuration=>
Administrative Templates=> Network=>
Network Connections=> Windows Firewall=> Domain
Profile.
5. Edit settings as follows:
Define port exceptions: enabled
6. In part 5 above, define ports using the strings as follows (without
quotation marks):
"2967:TCP:localsubnet:enabled:TCP_2967_SAVC10" (note that the
last "TCP_2967_SAVC10"
is the name that shows up in Windows Firewall, use whatever
string for the name you desire)
"38293:UDP:localsubnet:enabled:UDP_38293_SAVC10" (note that
the last "UDP_38293_SAVC10"
is the name that shows up in Windows Firewall, use whatever
string for the name you desire)
C. Small Business Server Windows Firewall Policy Settings:
From the Server Desktop:
1. Browse to:
Start=> Administrative Tools=> Group Policy Management.
2. In Group Policy Management, browse to:
Forest:yourdomain.local=> Domains=>
Default Domain Policy=> yourdomain.local=> Small
Business Server Windows Firewall.
3. Right click on Small Business Server Windows Firewall and select "edit".
4. Browse to:
Computer Configuration=> Administrative Templates=> network=>
Network Connections=> Windows firewall=> Domain
Profile.
5. Edit settings as follows:
Define program exceptions: enabled
6. In part 5 above, define program exceptions using the strings as follows
(without quotation marks):
"LUALL.exe:"*"enabled:SAVC10_LUALL.exe" (note that the last
"SAVC10_LUALL.exe"
is the name that shows up in Windows Firewall, use whatever
string for the name you desire)
"LUCOMS~1.exe:"*"enabled:SAVC10_LUCOMS~1.exe" (same note
about name)
"VPC32.exe:"*"enabled:SAVC10_VPC32.exe" (same note about name)
"VPDL_LU.exe:"*"enabled:VPDL_LU.exe" (same note about name)
"VPTray.exe:"*"enabled:VPTray.exe" (same note about name)
7. The End. Keep in mind there is always more than 1 way toskin a cat, so
any expert commentary is welcomed. But this does work, as far as Symantec
Enterprise Antivirus Corporate 10 goes.
"Max" wrote:
If i have to open 4000 ports on my firewall, or disable the firewall.
entirely, to get this to run, is this a usable product with SBS and XP SP2?
I have the product and would like to deploy it. Can I load it on each PC and
force it to go to the internet for live updates? Centralised management no
longer appears realistic.
Subscription runs out in July and unless they can sort it out, i won't be
adding to their pile
- Prev by Date: Re: DHCP quit handing out IP Addresses after SBS 2003 SP2 Installed
- Next by Date: Re: IIS 6 on SBS 2003 Standard Server
- Previous by thread: Re: Is Symantec Antivirus 10.1 a usable product?
- Next by thread: SBS Monitoring and Reporting not logging
- Index(es):
Relevant Pages
|
