Endpoint SWAT: Protect the Endpoint Community

 View Only

  • 1.  Older JDB files to be added to SEP 12RU3

    Posted Sep 26, 2013 05:39 AM

    Does anyone know where to download atleast a weeks worth of old JDB files. We have noticed that machines are getting full.zip updates as deltas are not available and a tech article suggested importing the JDB files to get the deltas back to normal...



  • 2.  RE: Older JDB files to be added to SEP 12RU3

    Posted Sep 26, 2013 05:48 AM

    According to Beppe, you should be able to grab older JDBs from the below link:

    ftp://ftp.symantec.com/AVDEFS/symantec_antivirus_corp/jdb/

    https://www-secure.symantec.com/connect/forums/sepm-offline-how-will-clients-update-when-bought-back-online#comment-8922971



  • 3.  RE: Older JDB files to be added to SEP 12RU3

    Broadcom Employee
    Posted Sep 26, 2013 05:51 AM

    ftp://ftp.symantec.com/AVDEFS/symantec_antivirus_corp/jdb/

    this will give only couple of days back.

    why do you want to download old jdb?

     



  • 4.  RE: Older JDB files to be added to SEP 12RU3

    Trusted Advisor
    Posted Sep 26, 2013 05:52 AM

    Hello,

    I recommend the .jdb over the Intelligent Updater, myself.  Yes, TPM (Third Party Management) needs to be enabled first. 

    But with SEP 12.1 RU3 and above, it is now possible to drop on a .jdb for AV and also for SONAR ("Behavior-Based Protection") and IPS ("Network-Based Protection") definitions too.  AV alone is not enough here in 2013.

    Check these Articles:

    How to update definitions for Symantec Endpoint Protection Manager (SEPM) using a .jdb file

    http://www.symantec.com/docs/TECH102607

    How to manually update definitions for a managed Symantec Endpoint Protection Client using the .jdb file

    http://www.symantec.com/docs/TECH104363

    Is there a file that will update non-AntiVirus content on a Symantec Endpoint Protection Manager or Symantec Endpoint Protection client?

    http://www.symantec.com/docs/TECH190343

    Also check the below downloads which may be of some interest to you:

    Script That Downloads .JDB Automatically

    Script to download Definitions from SEPM

    Hope that helps!!



  • 5.  RE: Older JDB files to be added to SEP 12RU3

    Posted Sep 26, 2013 08:43 AM

    Machines that have been upgraded from SEP 11 to SEP 12 or already have SEP 12 installed are pulling full.zip definitions instead of incrementals. I read in another article that this is because the SEPM doesnt have the deltas to provide so the full.zip is requested. How else could I get deltas to be given instead of the full.zip file.



  • 6.  RE: Older JDB files to be added to SEP 12RU3

    Trusted Advisor
    Posted Sep 26, 2013 08:53 AM

    Hello,

    You may like to check these Articles:

    When will a client download a full definition set from a Symantec Endpoint Protection Manager or Group Update Provider?

    http://www.symantec.com/docs/TECH131528

    With default LiveUpdate content revision settings configured within the Symantec Endpoint Protection Manager, clients are downloading full definition updates instead of delta updates

    http://www.symantec.com/docs/TECH94916

    Hope that helps!!



  • 7.  RE: Older JDB files to be added to SEP 12RU3

    Posted Sep 26, 2013 08:54 AM

    I'm afraid there's no way to force the creation of delta updates.  These are produced when the SEPM holds a copy of the client's defs in its repository, and generates the deltas as the difference between those and the latest defs.

    These happen as a natural part of updating via the SEPM (not Liveupdate)

    Something that can cause clients to repeatedly grab the full defs however, is if the client's local definitions are corrupt.  Have you checked for this?