Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 41 subscribers
  • Views 14358 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Kaspersky Update

HelpDesk D Clase

Hello, i have a server with kaspersky security center as a main console for antivirus, Our new sophos Xg 210 is blocking the updates from the kaspersky servers to the console, i created a exception for the updates but dont work. 

Can Someone Help me? 



This thread was automatically locked due to age.
Parents Reply Children
  • +1 in reply to HelpDesk D Clase

    Hi,

    from my limited regex experience your exception looks correct. If it is being blocked by rule 0 that means no rules are seeing the request as valid.

    You create a rule at the top of your firewall rules source LAN -> any -> destination WAN -> FQDN (Kaspersky) -> any service (until you identify which service they use). You are assuming the kasparsky.com is the update site, I suspect it is not.

    Ian

     

    Update investigation:- 

    https://support.kaspersky.com/13211

    Update servers for Kaspersky Security Center 10 and Kaspersky Endpoint Security 10 have changed:

    The changes improve speed and stability of updates delivery. 

    If access to the bincdn.kaspersky-labs.com/ server is restricted in your organization's network, please add *.kaspersky-labs.com to exclusions.
     
     

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v20.0.2 MR-2

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Oh, that was the issue! i added this to the exception and the updates works fine!.

    Thank You!.

  • 0 in reply to rfcat_vk

    Hello,

     

    I am suffering from this as well and cant get past it.  We already have this under our exceptions:

    Matching URLs:
    ^[A-Za-z0-9.-]*\.kaspersky-labs.com\.?/
    ^[A-Za-z0-9.-]*\.kaspersky.com\.?/
    geo.kaspersky.com
     
    Should this not be the same as *.kaspersky-labs.com?  What are we missing I am nto familiar with regex.
     
    I added an allowed of kaspersky-labs to the url group but it isnt working. 
  • 0 in reply to ADH

    Ok looks like by URL bypass has been accepted but would rather like to learn why the regex didnt allow it and clean it up if you can assist that would be great. 

Unfiltered HTML