Messaging Gateway

Virus definitions version/revision is not updating using Sonicwall Firewall 

12-30-2019 12:35 PM

Follow the below procedures provided by Symantec Support.

 

Ports and hostnames used by Messaging Gateway

TECH94152

Last Updated October 04, 2019

 

Situation

 
  • Symantec Messaging Gateway (SMG) scanner, control center, or combination server cannot access LiveUpdate.
  • SMG does not allow an update to the latest version.

 

Cause

 

The SMG server cannot route correctly to the update servers due to external firewall.
 

Solution

 

The following table illustrates the firewall ports and hostnames used by Symantec Messaging Gateway products:

HOSTNAME

PROTOCOL

PORT

swupdate.brightmail.com

TCP

443

register.brightmail.com

TCP

443

probes.brightmail.com

TCP

443

aztec.brightmail.com

TCP

443

liveupdate.symantec.com

TCP

80

liveupdate.symantecliveupdate.com

TCP

80

definitions.symantec.com

TCP

80

securityresponse.symantec.com

TCP

80

rules.ara.brightmail.com

TCP

443

 

For customers wishing to secure the outbound communications from their SMG hosts, use these hostnames to define the allowed endpoints.

If firewalls that require an IP address only are needed, and the SMG hosts only require HTTPS access, Symantec recommends using a web proxy to facilitate this communication and to use the access control policy within the web proxy to control the allowed destinations.

The hosts that are required for normal operation are below. These hostnames in turn resolve to a number of different IP addresses and may change at times in the future:

  • register.brightmail.com
  • swupdate.brightmail.com
  • probes.brightmail.com
  • aztec.brightmail.com
  • liveupdate.symantec.com
  • liveupdate.symantecliveupdate.com
  • definitions.symantec.com
  • securityresponse.symantec.com
  • rules.ara.brightmail.com

 

Once you completed the above procedures, follow below recommendations.

  1. Check and investigate from Sonicwall Firewall (In our case SMG download is blocked by Gateway Antivirus)
  2. Allow SMG update server IP 152.195.132.120 from your Gateway Antivirus

 

Now you have working Symantec Messaging Gateway

Statistics
0 Favorited
5 Views
0 Files
0 Shares
0 Downloads

Tags and Keywords

Comments

04-04-2020 06:25 AM

Remember that sonic wall aint good.  Smg js best updated by going direct to the internet

01-14-2020 03:57 AM

Well thats the main thing. I hope it continues to work as well. Lates

01-14-2020 12:15 AM

unfortunately, everything works fine for me.

 

thanks  for the info

01-13-2020 06:08 AM

?? Always have messaging gateway go out to the internet on its own to get any and All updates. Its more reliable and current!!!...

01-12-2020 12:38 AM

Single protection is no longer advisable.

01-09-2020 05:44 PM

No man! Its better to have smg go direct to internet

01-09-2020 05:08 AM

Hi Alex,

 

Thank you for the information.

We already rectified this issue by allowing the IP of SEP update server.

 

Thanks,

Rodel

01-04-2020 06:19 AM

Forget the firewall by going per weblink. Have the firewall allow your smg any/ any on 443. Done. Reboot your smg as well.

01-02-2020 01:27 AM

Virus definitions LiveUpdate is always failed and download files are being blocked by Sonicwall Antivirus Gateway.

 

12-31-2019 09:49 PM

What is happening?

Related Entries and Links

No Related Resource entered.