Symantec 360R Administration Guide - Page 106
Configuring AVpe
UPC - 037648240185
View all Symantec 360R manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 106 highlights
106 Advanced network traffic control Configuring AVpe ■ If your network is comprised of clients that are unmanaged and access LiveUpdate directly for their AV updates, decide which client to designate as the master. The master should always be turned on, have an active Symantec antivirus client, and have a connection to the Internet where it can download virus definition updates. ■ If your network topology includes a configuration in which client workstations are located behind an enclave firewall, and iff the firewall performs address transforms, which changes the client's actual IP address, the security gateway is unable to communicate with the client (as is required to validate client virus definitions). In this configuration, the security gateway contacts the firewall, not the client. ■ Ensure that traffic is not being blocked by a personal firewall. You must allow UDP/Port 2967 on all personal firewalls. This is set by default in Symantec Client VPN version 8.0. Configuring AVpe Configuring AVpe for a Symantec AntiVirus Corporate Edition environment and a client-only network is similar. Configuring for Symantec AntiVirus Corporate Edition servers involves the following tasks: ■ Defining the location of the primary and (optionally) a secondary Symantec AntiVirus server and verifying that a client has the Symantec AntiVirus Corporate Edition client installed and that the virus definitions and the scanning engine on client computers are up-to-date. See "Configuring AVpe" on page 106. ■ Enabling AVpe for Computer or VPN Groups. See "Enabling AVpe" on page 107. Configuring for networks with unmanaged antivirus clients (without Symantec AntiVirus Corporate Edition) involves the following tasks: ■ Defining the location of the policy master client and verifying that it has a supported Symantec antivirus client installed and that the virus definitions and the scanning engine on client computers are up-to-date. ■ Enabling AVpe for Computer or VPN Groups. See "Enabling AVpe" on page 107. ■ Configuring the AV clients. See "Configuring the antivirus clients" on page 109.