Managing legacy clients and servers with Symantec Client Security 3.x and Symantec AntiVirus Corporate Edition 10.x

Article:TECH101170  |  Created: 2005-01-30  |  Updated: 2007-01-02  |  Article URL http://www.symantec.com/docs/TECH101170
Article Type
Technical Solution

Product(s)

Environment

Issue



You installed one or more Symantec Client Security 3.x or Symantec AntiVirus Corporate Edition 10.x servers and need to manage clients and servers running Symantec Client Security 2.0 or earlier, such as Windows Me/98 clients.


Solution



The current version of Symantec AntiVirus uses the Secure Sockets Layer (SSL) protocol running over TCP to encrypt communications between servers and clients. Symantec AntiVirus versions 9.x and earlier used UDP for such communication.

If you migrate version 9.x and earlier servers that manage legacy clients, UDP communications are permitted by default to support the legacy clients. If you perform a new installation (not a migration) of a Symantec AntiVirus server that has no existing clients, the ability to manage legacy clients is disabled by default. In this instance, if you want to manage clients running version 9.x or earlier, you must explicitly enable the management of legacy clients on the server. After enabling this feature, you need to reboot the server you are configuring in order for the change to take effect.

To manage legacy clients and servers
  1. Start Symantec System Center.
  2. Right-click a server or a server group, and then click All Tasks > Symantec AntiVirus > Server Tuning Options.
  3. On the Rollout and Management tab, check Allow this server to manage 9.x and earlier clients and servers (requires reboot to take effect).
  4. Click OK.
  5. Do one of the following:
    • Restart all affected Windows servers that run Symantec AntiVirus 10.x or Symantec Client Security 3.x.
    • On NetWare servers that run Symantec AntiVirus 10.x, press F10 to unload the Symantec console, and then reload it by typing vpstart

To allow communication to pass through a firewall or gateway, you must create rules to allow any port to accept UDP communication on port 2967 and to allow outbound UDP communication from port 2967. For NetWare parent servers, create rules to allow any port to accept UDP communication on port 2968 and to allow outbound UDP communication from port 2968.

For details about ports, read the document Ports used for communication in Symantec AntiVirus 10.x and Symantec Client Security 3.x.






Legacy ID



2005033012303348


Article URL http://www.symantec.com/docs/TECH101170


Terms of use for this information are found in Legal Notices