We are using Symantec Protection Engine 7.5.1.5 version installed on a Windows 2012 Server to scan the files on the Isilon NAS appliance connects over the ICAP protocol. The Virus definitions on the servers at sites B,C,D are not getting updated automatically but servers at siteA gets it automatically. I'm not sure why the servers located at sites B,C,D are not getting updates, it could be a firewall blocking them. So my questions is below.
1. Does the Symantec Protection Engine downloads definitions by contacting Symantec servers over the internet ?
2. How do I findout what device in out ineternal network is blocking the virus definitions download, can I review some symantec logs and find this information.
3. For time being can I download the update manually and apply them? Looks like the link below is a godo starting point ?
http://www.symantec.com/connect/articles/knowledgebase-articles-symantec-protection-engine-spe
4. If I want to collect some packet capture, how do I manually initiate a definitions update from the sever.
I can access symantec gui by using https://localhost:8004 web address from the windows server.
Many thanks in advance.