Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 41 subscribers
  • Views 14361 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Kaspersky Update

HelpDesk D Clase

Hello, i have a server with kaspersky security center as a main console for antivirus, Our new sophos Xg 210 is blocking the updates from the kaspersky servers to the console, i created a exception for the updates but dont work. 

Can Someone Help me? 



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    please post a screenshot of your exception and which firewall rule is blocking the update?

    Ian

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v20.0.2 MR-2

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Hi, the firewall rule blocking the update is the Rule 0. Below is the Printscreen of the exception. 

    Thanks For The replay.

     

  • +1 in reply to HelpDesk D Clase

    Hi,

    from my limited regex experience your exception looks correct. If it is being blocked by rule 0 that means no rules are seeing the request as valid.

    You create a rule at the top of your firewall rules source LAN -> any -> destination WAN -> FQDN (Kaspersky) -> any service (until you identify which service they use). You are assuming the kasparsky.com is the update site, I suspect it is not.

    Ian

     

    Update investigation:- 

    https://support.kaspersky.com/13211

    Update servers for Kaspersky Security Center 10 and Kaspersky Endpoint Security 10 have changed:

    The changes improve speed and stability of updates delivery. 

    If access to the bincdn.kaspersky-labs.com/ server is restricted in your organization's network, please add *.kaspersky-labs.com to exclusions.
     
     

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v20.0.2 MR-2

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • +1 in reply to HelpDesk D Clase

    Hi,

    from my limited regex experience your exception looks correct. If it is being blocked by rule 0 that means no rules are seeing the request as valid.

    You create a rule at the top of your firewall rules source LAN -> any -> destination WAN -> FQDN (Kaspersky) -> any service (until you identify which service they use). You are assuming the kasparsky.com is the update site, I suspect it is not.

    Ian

     

    Update investigation:- 

    https://support.kaspersky.com/13211

    Update servers for Kaspersky Security Center 10 and Kaspersky Endpoint Security 10 have changed:

    The changes improve speed and stability of updates delivery. 

    If access to the bincdn.kaspersky-labs.com/ server is restricted in your organization's network, please add *.kaspersky-labs.com to exclusions.
     
     

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v20.0.2 MR-2

    If a post solves your question please use the 'Verify Answer' button.

Children
Unfiltered HTML