Symantec Antivirus CE 8.1 - KiXtart.org

You are not logged in. [Log In] KiXtart.org website » Forums » KiXtart » Lounge » Symantec Antivirus CE 8.1

Page 1 of 1

Topic Options

#102248 - 2003-06-18 09:22 PM Symantec Antivirus CE 8.1
Allen Allen KiX Supporter Registered: 2003-04-19 Posts: 4567 Loc: USA	Thought I would pass along some info I had to figure out the hard way. It appears Symantec has changed the manual way of updating the AV Parent Server on version 8.1. In the past we downloaded the updated definitions from their FTP, ran the Intelligent Updater, and from there, the server pushed it out to the clients. (For some stupid reason, LiveUpdate is not allowed on our corporate network.) This has worked fine since at least version 7.5. After upgrading to 8.1 I began to notice none of our clients were getting the lastest defs. Finally, after some posts on symantec they offered a solution... they changed the way it updates and it is now necessary to download a XDB file before the server can push the defs to the server. Not sure if I have to do this every time, and have posted another question asking this. For those interested, below is the link to the Symantec posts (you may have to copy and paste the link). http://servicenews.symantec.com/cgi-bin/displayArticle.cgi?article=16388&group=symantec.support.network.sav.general&mini_version=sav_8_ce&product=sav_ce&product_name=Symantec+AntiV irus+Corporate+Edition&submit=Post&tpre=ep&version_name=8.x&
Top

#102249 - 2003-06-18 10:46 PM Re: Symantec Antivirus CE 8.1
NTDOC NTDOC Administrator Registered: 2000-07-28 Posts: 11631 Loc: CA	hmmm Bummer. We use LiveUpdate manually and so far its been working just fine for us.
Top

#102250 - 2003-06-19 07:04 PM

Re: Symantec Antivirus CE 8.1

cmarti Offline

Hey THIS is FUN

Registered: 2001-02-26
Posts: 297
Loc: Little Rock, AR

The xdb download let your clients receive a delta when using the vdtm method clients automatically getting defs when the parent gets them) of receiving defs. This cuts down the definition download size from 3+mb to around 150kb. If the client defs are too old it will push out a full def download to them. It also pushes a full def download about once every 7 days to them anyway to make sure the def file they have is not corrupted.

I had set up downloading the xdb file with 8.01. Then 8.1 came out, then Symantec pulled it because of symevnt problems. Now they've rereleased it..

90% of our client machines are 7.60, which is cool because even with downloading the xdb it still pushes a vdb file to 7.x clients instead of the delta. I actually have to download the xdb and the symcdefsx86.exe file. I extract the x86 and push the defs to another server in a different server group that's owned by another group.

Here's a copy of the batch file that I use just in case..

code:

:ClearDirectories
Echo y| del e:\platdefs\*.*
Echo y| del c:\vdb\*.*

:GetDefs
ftp -s:platdefs.txt>c:\scripts\logs\platlog.log
Dir e:\platdefs\symcdefsx86.exe |find /I " 0 symcdefsx86.exe"
IF %ERRORLEVEL% == 0 goto DownloadError
Dir e:\platdefs\nav8up.exe |find /I " 0 navup8.exe"
IF %ERRORLEVEL% == 0 goto DownloadError

:Extract
e:
cd platdefs
navup8
E:\PLATDEFS\symcdefsx86.exe /q /extract /vdb "c:\vdb"
ECHO The attached file is the results of the ftp of the definitions from symantec.>C:\SCRIPTS\LOGS\COPYDEFS.LOG
ECHO If these are NEW definitions, they will automatically be pushed out to client machines.>>C:\SCRIPTS\LOGS\COPYDEFS.LOG
ECHO This runs from \\myprimaryparent\C$\scripts\Platdefs.bat>>C:\SCRIPTS\LOGS\COPYDEFS.LOG
ECHO.>>C:\SCRIPTS\LOGS\COPYDEFS.LOG

:CopyDefs
 COPY E:\Platdefs\*.xdb "c:\program files\sav\"
IF '%ERRORLEVEL%' == '0' (
  ECHO Definitions successfully copied to myprimaryparent>>C:\SCRIPTS\LOGS\COPYDEFS.LOG
) Else (
  ECHO.
  ECHO UNABLE TO COPY DEFINITIONS TO \\myprimaryparent\C$\PROGRAM FILES\Sav!!!>>C:\SCRIPTS\LOGS\COPYDEFS.LOG 
)

  COPY E:\Platdefs\*.xdb "\\parent\c$\program files\sav\"
IF '%ERRORLEVEL%' == '0' (
  ECHO Definitions successfully copied to parent>>C:\SCRIPTS\LOGS\COPYDEFS.LOG
) Else (
  ECHO.
  ECHO UNABLE TO COPY DEFINITIONS TO \\parent\C$\PROGRAM FILES\Sav!!!>>C:\SCRIPTS\LOGS\COPYDEFS.LOG 
)

  COPY c:\vdb\*.* "\\AnotherParentInADifferentServerGroup\VPHOME\"
IF '%ERRORLEVEL%' == '0' (
  ECHO Definitions successfully copied to AnotherParentInADifferentServerGroup>>C:\SCRIPTS\LOGS\COPYDEFS.LOG
) Else (
  ECHO.
  ECHO UNABLE TO COPY DEFINITIONS TO \\AnotherParentInADifferentServerGroup\Vphome!!!>>C:\SCRIPTS\LOGS\COPYDEFS.LOG 
)

  COPY c:\vdb\*.* "\\AnotherParentInADifferentServerGroup\c$\Program Files\Nav\"
IF '%ERRORLEVEL%' == '0' (
  ECHO Definitions successfully copied to AnotherParentInADifferentServerGroup>>C:\SCRIPTS\LOGS\COPYDEFS.LOG
) Else (
  ECHO.
  ECHO UNABLE TO COPY DEFINITIONS TO \\AnotherParentInADifferentServerGroup\c$\Program Files\Nav\!!!>>C:\SCRIPTS\LOGS\COPYDEFS.LOG 
)

:Email
blat.exe C:\SCRIPTS\LOGS\COPYDEFS.LOG -attacht "c:\scripts\logs\platlog.log" -t me@mycompany.com  -s "Antivirus Definition download on %computername%."


:THEEND

I also download liveupdate defs from a different batch file, and push them out to a dfs share, which is about 5 servers. I have the liveupdate clients, home machines, getting their defs from a dfs share. I have onsite client machines set up for liveupdate, but don't use it. It's just a security blanket.... [Big Grin]

L8tr..

Top

#102251 - 2003-06-23 06:10 PM Re: Symantec Antivirus CE 8.1
Rocco Capra Rocco Capra Hey THIS is FUN Registered: 2002-04-01 Posts: 380 Loc: Mansfield Ohio	We got around this by converting to Sophos. Rocco _________________________ I Love this board!! -------------------- My DEV PC is running KIX 4.22 WINXP Pro
Top

#102252 - 2003-06-24 01:17 AM Re: Symantec Antivirus CE 8.1
Allen Allen KiX Supporter Registered: 2003-04-19 Posts: 4567 Loc: USA	And the hits just keep on coming!!! Last week, Symantec released a buggy vdb file which in all its wonderful glory, effectively disables it's own product. And the best part... before you can fix it, every pc has to be restarted, as the service will no longer stop.... Not to mention the time it takes to write another script to fix it on all our pcs. Here is the link for those interested. http://service1.symantec.com/SUPPORT/ent-security.nsf/9d94c8571a91ba4788256bf3007f62b5/de5e6b86a6eec0a288256d4b005a2426?OpenDocument&prod=Symantec%20AntiVirus%20Corporate%20Edition &ver=8.x&src=ent&pcode=sav_ce&dtype=corp&svy=&prev=&miniver=sav_8_ce URRGHH!!!
Top

#102253 - 2003-06-24 01:31 AM Re: Symantec Antivirus CE 8.1
Les Les KiX Master Registered: 2001-06-11 Posts: 12734 Loc: fortfrances.on.ca	Good thing I'm still on 7.61 _________________________ Give a man a fish and he will be back for more. Slap him with a fish and he will go away forever.
Top

#102254 - 2003-06-24 03:03 AM Re: Symantec Antivirus CE 8.1
NTDOC NTDOC Administrator Registered: 2000-07-28 Posts: 11631 Loc: CA	What a joy. See, this is the EXACT reason why I "tet" updates before rolling them out. You just got lucky with this one Les, similar issues have happened in the past for the 7.x version as well. I've actually been to the local Symantec office where they write the code and test the code. They have a very cool automated system, but I guess you can't test everything. Although I would have thought something like this would have been caught before it was made available.
Top

#102255 - 2003-06-24 03:22 AM Re: Symantec Antivirus CE 8.1
Les Les KiX Master Registered: 2001-06-11 Posts: 12734 Loc: fortfrances.on.ca	Well... we're dumping NAV/SAV anyway soon and going to McAfee so won't need to worry. _________________________ Give a man a fish and he will be back for more. Slap him with a fish and he will go away forever.
Top

#102256 - 2003-06-24 03:27 AM Re: Symantec Antivirus CE 8.1
Allen Allen KiX Supporter Registered: 2003-04-19 Posts: 4567 Loc: USA	Les, I hope you are kidding. It's been a few years since my breakup with McAfee... We ended up disabling VirusShield on the PCs because of all the problems it caused. I hope they are better now than in the past...
Top

#102257 - 2003-06-24 03:36 AM Re: Symantec Antivirus CE 8.1
Les Les KiX Master Registered: 2001-06-11 Posts: 12734 Loc: fortfrances.on.ca	No, not kidding. I've been with NAV before it was NAV, when it was Intel and IBM wrote the engine. CorpIT is forcing me to switch. Hope McAfee 7 is better than previous versions. _________________________ Give a man a fish and he will be back for more. Slap him with a fish and he will go away forever.
Top

Page 1 of 1

Previous Topic View All Topics

Index Next Topic

Moderator: Arend_, Allen, Jochen, Radimus, Glenn Barnas, ShaneEP, Ruud van Velsen, Mart

Hop to:

Shout Box

Search the board with:
superb Board Search
or try with google:

	Web kixtart.org