Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Problems getting AV updates through an 1811W router

We have a Cisco 1811W router for our gateway to the Internet. I just setup McAfee Groupshield on a new Exchange server. When I tried to run updates, they would fail. It uses HTTP over port 80 to download the updates. The updates would start to download and the progress bar would show the percentage of the file downloaded. After about 15 - 20 seconds, the percentage stopped. After about 45 minutes, it would finally fail (still at the same percentage downloaded).

I bypassed the router and directly connected to the Internet, and the update works fine. I recently had problems with some Exchange emails getting blocked at the firewall. I went into the Firewall | Application Security and turned off inspection on ESMTP and SMTP and that solved the problem. The router is setup to inspect TCP and UDP. I think that might be part of the problem, but I don't know what to change.

Has anyone had this problem or know how to fix it? I don't know a lot about routers, so if I am way off, let me know.

Thanks,

Jason

Here is some of the configuration of the router

version 12.3

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

ip subnet-zero

ip cef

!

!

ip domain name yourdomain.com

ip name-server 161.164.20.201

ip name-server 151.164.67.201

ip inspect name SDM_LOW cuseeme

ip inspect name SDM_LOW ftp

ip inspect name SDM_LOW h323

ip inspect name SDM_LOW icmp

ip inspect name SDM_LOW netshow

ip inspect name SDM_LOW rcmd

ip inspect name SDM_LOW realaudio

ip inspect name SDM_LOW rtsp

ip inspect name SDM_LOW sqlnet

ip inspect name SDM_LOW streamworks

ip inspect name SDM_LOW tftp

ip inspect name SDM_LOW vdolive

ip inspect name SDM_LOW tcp

ip inspect name SDM_LOW udp

ip ips po max-events 100

no ftp-server write-enable

!

5 REPLIES

Re: Problems getting AV updates through an 1811W router

I don't see an inspect for http traffic. You might try adding:

ip inspect name SDM_LOW http

HTH,

John

HTH, John *** Please rate all useful posts ***
New Member

Re: Problems getting AV updates through an 1811W router

Thanks for the response. I added the line and it still hangs.

Re: Problems getting AV updates through an 1811W router

Post entire config please.

New Member

Re: Problems getting AV updates through an 1811W router

Here's our config

New Member

Re: Problems getting AV updates through an 1811W router

SOLVED - I upgraded to IOS 12.4(15)T11 and it works. I think there was a bug in the code for Inspect commands.

137
Views
0
Helpful
5
Replies