Endpoint Protection

 View Only

  • 1.  After IP Subnet change of clients, AV server no longer finds them

    Posted Jun 10, 2010 04:40 PM
    Hi, I have the following where I work:
    Windows 2003 Servers/Windows XP SP3 Clients
    Symantec Corporate AV 10.1.7.7000 (didn't see a forum for this product so I picked the next closest thing)

    I just moved about 20 computers from a remote site to our main office. The 20 computers were working fine over the VPN getting updates from the AV server. When the clients moved to the 192.168.1.0/24 subnet (where the AV server has been), the AV Management console did not pick up their new IP's and lists them with the old IP subnet.
     
    I've tried uninstalling at the client, removing the computer from the AV Server, and reinstalling from the Client AV Rollout using IP address on two PC's but now they're not showing up in the Management console at all or getting virus definition updates. I've been looking into this most of the day and all I've seen are articles about the server's IP changing. Tomorrow I will try doing a manual uninstall of one to see if that works. Has anyone seen this problem before and have a fix?

    Thanks,
    Paul


  • 2.  RE: After IP Subnet change of clients, AV server no longer finds them

    Posted Jun 10, 2010 05:19 PM
    Are you able to ping the client from SAV server ?

    If yes then they should communicate with each iother if they are still not communicating
    THen replace grc.dat and root certificates on the clients from the servers..
    Or Call Symantec and get the automated tool to do this MakeDrop 


  • 3.  RE: After IP Subnet change of clients, AV server no longer finds them

    Broadcom Employee
    Posted Jun 11, 2010 02:10 AM
    telnet port 2967 from server to client and vice a versa.If successful, copy the grc.dat on these clients.


  • 4.  RE: After IP Subnet change of clients, AV server no longer finds them

    Posted Jun 11, 2010 11:32 AM

    I can ping the server from the client and vice-versa. Can also telnet to the client on 2967 from the server, but can't from client to server on the problem PC. However I can't telnet to the server on 2967 from a PC that is working fine and getting updates either.

    I copied the grc.dat file to \Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus Corporate Edition\7.5, also copied the root certificate to the client. Have restarted the problem client, waited 20 minutes, refreshed the server console and SAV isn't seeing it still.



  • 5.  RE: After IP Subnet change of clients, AV server no longer finds them
    Best Answer

    Posted Jun 11, 2010 12:13 PM
    Then is should be the telnet issue..Make sure this port is allowed in your VLAN 


  • 6.  RE: After IP Subnet change of clients, AV server no longer finds them

    Posted Jun 11, 2010 12:18 PM
    Sometimes in console you can not see all the IP of the clients.
    Try to double click on the client in the console and check the Network tab.
    Check whether the IP is mentioned in there.


  • 7.  RE: After IP Subnet change of clients, AV server no longer finds them

    Posted Jun 11, 2010 02:47 PM
    Ha, I'm a fool sometimes. Changed the port settings on the firewall of the SAV server and an hour later all the moved clients got updates.

    Thanks Vikram and Pete!