cancel
Showing results for 
Search instead for 
Did you mean: 

Virus Signature Monitoring

Highlighted
Occasional Contributor

Virus Signature Monitoring

Hi all,

I want to use the host checker but I stil have the problem to download the xml file.

"download failed - rc=7 - url='https://download.juniper.net/software/av/uac/epupdate_hist.xml' - err='couldn't connect to host'

It seems that the sa is not able to establish a session through the firewall. But on the firewall I did not see any traffic blocked.. Which route the SA uses to download the file?

Thanks & Kind regards

4 REPLIES 4
Highlighted
Regular Contributor

Re: Virus Signature Monitoring

The SA downloads the file via the internal network connection so you will need to allow access through, for example, the route your users use for Internet browsing. If needed you will see you can configure proxy settings.

Highlighted
Respected Contributor

Re: Virus Signature Monitoring

What does your TCP dump on the internal port show (both the raw & SSL dump)?
Occasional Contributor

Re: Virus Signature Monitoring

Thank you.

But I did not get a connection.

I do not want to use a proxy server in this scenario. For one test I used a proxy. But I cannot remove the entry. If I want to use only the option "Auto-update virus signatures list" I got the message "Enter a valid proxy port value for Auto-update of virus signatures list " and the address and port which I used for the test I could not remove.

If I used the proxy with the ip 10.1.1.1:80 I got the message "Virus Signature Monitoring : download failed - rc=5 - url='https://download.juniper.net/software/av/uac/epupdate_hist.xml' - err='Couldn't resolve proxy '.1.1.1''"

How could I remove the proxy entry?

Only following scenario works. Enable the option "Auto-update virus signatures list", leave the option "Use Proxy Server'" blank but set the port with a value of 80 or 443.

With this scenario I got the message "Virus Signature Monitoring : download failed - rc=7 - url='https://download.juniper.net/software/av/uac/epupdate_hist.xml' - err='couldn't connect to host'" again.

The tcp dump (internal port) of this scenario shows only communication between my client, from which I configured the sa, and the sa.

No traffic concerning the Auto-update virus signatures list....

7.1R2 (build 18193) is running...

Highlighted
Occasional Contributor

Re: Virus Signature Monitoring

Sorry!

Unfortunalety it was a firewall issue.