02-15-2010 10:46 AM - edited 03-11-2019 10:09 AM
Hello,
We are having a bit of an issue that I thought I'd run by the community.
We have an ASA 5510 and we are running the "Anti-X" module with it. It is the Antivirus/Antispyware Interscan Module from Trend Micro. At any rate, we fond that when we try to download things via FTP, the download takes an extremely long period of time and often fails before it times out. By disabling the FTP scanning, it resolves the issue.
Has anyone else dealt with this? Any tips? We upgraded the engine as well as the virus definitions.
Thanks,
Ben
Solved! Go to Solution.
02-15-2010 12:22 PM
Did you guys enable "deferred scanning"?
http://www.cisco.com/en/US/docs/security/csc/csc60/administration/guide/csc4.html#wp1042483
If not, please try it to see if it makes any difference.
02-15-2010 11:36 AM
I am having the same/similar trouble I think. I am running latest firmwares too. Here is the thread with my issue:
https://supportforums.cisco.com/thread/2002560
02-15-2010 11:40 AM
Thanks Brandon,
Yeah, it's a shame, but the subscription is almost up on this and I am going to have a hard time selling the renewel if I can't enable FTP Scanning.
May open a case with the TAC if I can't get it resolved. Will let you know what the resolution is.
- Ben
02-15-2010 11:57 AM
I didn't buy smartnet so no TAC option for me. Please do update this thread
if you find a solution.
Brandon
On Mon, Feb 15, 2010 at 11:40 AM, benwaldon <
02-15-2010 12:22 PM
Did you guys enable "deferred scanning"?
http://www.cisco.com/en/US/docs/security/csc/csc60/administration/guide/csc4.html#wp1042483
If not, please try it to see if it makes any difference.
02-15-2010 12:45 PM
Thanks Kevin,
That fixed the problem.
I was a bit concerned about the part in the Administration guide where it says that deferred scanning
"May introduce a security risk".
But, the TAC engineer was saying that it deffered scanning presents a minimal security risk. The idea is that it passes along a very small portion of the file. Just enought to keep the (internal) client engaged in the download process.
I tested this and it works. I was running several downloads against files exceeding 40MB and it they all ran smoothly.
Thanks,
Ben
02-15-2010 12:19 PM
Would you describe your problem as intermittent?
I had a download I was testing it against. The file was 13MB and it would work sometimes (after holding at transferring for 30 seconds), and sometimes it wouldn't. But, then I used a file at 60MB and it was consistently failing.
02-15-2010 12:35 PM
I think I have a different trouble. I just remembered that I even disabled
file scanning completely in the CSC and still have this problem whenever I
specify traffic to even pass though the CSC unchecked. I will sometimes get
weir errors from ftp server when using cli ftp. Sometimes it looks like it
is not working for 90 seconds or longer then all of a sudden it starts
downloading..
Brandon
On Mon, Feb 15, 2010 at 12:19 PM, benwaldon <
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide