Hi,

Refer to attached file, virus definition update will download from both SEPM and 10.10.1.58 ??

Since 10.10.1.58 is internal server, will definition also be downloaded from ??

Thanks

Yes it can downlaod from SEPM or from Luadmin

If both options are enabled, clients try to retrieve updates from both sources. Typically, do not enable both options unless you have a specific reason. If the management server provides named update versions to clients, and the clients have previously downloaded the latest updates from a LiveUpdate server, the clients do not download and install the named (previous) versions.

Symantec Endpoint Protection Manager - LiveUpdate - Policies explained

http://www.symantec.com/business/support/index?page=content&id=TECH104435

Assuming 10.10.1.58 is a correctly configured LUA serverm, then your clients will download defs from there in accordance with the Schedule settings (on the left hand pane) of your LU Policy.

If no schedule has been set, then the clients will never actually download from 10.10.1.58.  Similaly, if you set a schedule but omit the "Options for Skipping LiveUpdate" then you are potentially generating more network load than you need to.

The below article might be useful to you:

What happens when both LiveUpdate Server and Default Management server are configured in a LiveUpdate policy?

How to establish Internal LiveUpdate server ??

Thanks

Go through this

Setting up an internal LiveUpdate server

http://www.symantec.com/business/support/index?page=content&id=HOWTO80896

I didn't find the source in SEPM installation file.

Where can find the source ?

Otherwise, 10.10.1.58 is internal. Will clients connect to it through internet ?

Thanks

it will be on CD2\tools folder from Fileconnect.

https://fileconnect.symantec.com

key in the serial number

CD1 will have SEPM

CD2 will have luadmin

Assuming you didn't configure that LU policy in the first place and someone else setup the LUA, you can at least check if the LUA is running by trying to connect to the below URL:

http://10.10.1.58:7070/lua

If up and running, then you should be presented with a login page.  Hopefully your company has that documented somewhere...

On a related note, most companies don't need a LUA, as the use cases for it are rather specialised  It might be worth reviewing the below articles to help you decide if this can be removed outright...

http://www.symantec.com/docs/TECH154896
http://www.symantec.com/docs/TECH93409

Incidentally, as it's an internal IP connections should be direct, unless going via a proxy.

Hi,

Will clients connect to Internet for download virus definition even both setting were enabled for internal only ??

Or only default management server and internal LiveUpdate server will donwload from internet ??

Thanks

if you select use symantec liveupdaet server, it will go to internet

if you select manangent server and lu , it will go to both of them , select any one, 

You can set your sepm to take updates from luadmin ( if sepm does not have internet)

sepm will then distribute to clients.

if you select manangent server and lu , it will go to both of them , select any one, 

- Not through internet ??

You can set your sepm to take updates from luadmin ( if sepm does not have internet)

sepm will then distribute to clients.

- Do you mean build a intneral liveupdate server and all clients update from it only ??

Hi,

I think it might be the last question from my boss.

Under our currnet setting, will client connect to internet for download ?

Thanks

No. it will not

It will connnect only to SEPM and Luadmin ( 10.10.1.X) only

If you had Luadmin then you can select that option( Both SEPM and LUadmin needed in this case) , If you have only SEPM, then Check only Default management server , all clients will go to SEPM and Not to internet.Clients can take updates from different source , in your case Let SEPM take update from internet and clients get update from SEPM.

How client computers receive content updates

http://www.symantec.com/business/support/index?page=content&id=HOWTO80888