Sometimes when the Security Server obtains updates, it would time out and generate errors in the logs. To resolve this:
Increase the timeout value when the Security Server obtains updates.
- On the Security Server, open the ..\Program Files\Trend Micro\Security Server\PCCSRV\Admin\aucfg.ini file with a text editor such as Notepad.
- Insert the “timeout=99999” line, as shown below:
- Save and close the file.
- Update the server and verify the new timeout settings.
The issue may also occur when the client is using a proxy server to update. To fix this:
Specify the proxy server on the WFBS console.
- Log on to the WFBS console.
- Go to Preferences > Global Settings.
- Under Proxy Information section, update the following:
- Use a proxy server for updates and license notification
- Use SOCKS 4/5 proxy protocol
- Proxy server authentication
- User name
The client sometimes has a firewall that blocks the current update source. To resolve this:
Change the ActiveUpdate source.
- Log on to the WFBS console.
- Go to Update > Source.
- Select Alternate update source.
- Use any of the following sources for WFBS:
- For WFBS 5.0: http://wfbs50-p.activeupdate.trendmicro.com/activeupdate
- For WFBS 5.1: http://wfbs51-p.activeupdate.trendmicro.com/activeupdate
- For WFBS 6.0: http://wfbs60-p.activeupdate.trendmicro.com/activeupdate
- For WFBS 7.0: http://iau.trendmicro.com/iau_server.dll
- For WFBS 8.0: http://wfbs80-p.activeupdate.trendmicro.com/activeupdate/
Akamai, Trend Micro’s third-party content provider, provides localized cache servers that are geographically located close to you. Since Akamai’s server IP addresses changes depending on the country you are located in (and even under different network conditions), it is best to use the DNS name “trendmicro.georedirector.akadns.net” or “activeupdate.trendmicro.com.edgekey.net ” as the basis for your firewall rule.
Add an IP range of ActiveUpdate servers to be excluded on their firewall configuration
- Do one of the following:
You should then be redirected to “a151.g.akamai.net”.
- For WFBS 5.0: Ping “wfbs51-p.activeupdate.trendmicro.com”
- For WFBS 5.1: Ping “wfbs51-p.activeupdate.trendmicro.com”
- For WFBS 6.0: Ping “wfbs60-p.activeupdate.trendmicro.com”
- For WFBS 7.0: Ping “iau.trendmicro.com”
- For License update: Ping “licenseupdate.trendmicro.com”
- For AntiSpam source: Ping “csm-as.activeupdate.trendmicro.com”
- For Smart Scan update: Ping “wfbs6-icss-p.activeupdate.trendmicro.com”
- For the OPP (Outbreak Policy Pattern): Ping “oc.activeupdate.trendmicro.com”
- Change the last octet of the IP address you got to “.255” This should give you the address block for your servers.
Important: The resolved IP addresses can change depending on network traffic, and on whether or not the servers fail. Akamai compensates for this by modifying their DNS to point to a different server set. If this is the case, the procedure above should be repeated again, then add the new server IPs to the list.
The issue may also occur when manual update is working and scheduled update is not in WFBS 6.0. To fix this:
Verify the scheduled update source of WFBS 6.0
- Open the ..\PCCSRV\Private\ofcserver.ini using a text editor like Notepad.
- Make sure that the following lines are correct:
The Security Server might not update due to corrupted pattern files or corrupted update components in the server’s cache. To fix this, run the Disk Cleaner tool.
Posted in: Server