ATP200 - unable to update antimalware

aait
aait Posts: 14  Freshman Member
First Comment Friend Collector First Anniversary
edited March 2024 in Security

After updating "Firmware Version
V5.37(ABFW.2) / 2024-01-20 05:47:51" I have:
Anti-Malware signatures are updated to the latest version 2.1.1.20231130.0.. (success) at Mon Mar 11 09:03:50 2024
Threat Intelligence Machine Learning (TIML) signatures are updated to the latest version 1.0.0.20240310.0.. (success) at Mon Mar 11 09:03:50 2024
Refreshing services or restarting the firewall doesn't solve the problem

All Replies

  • smb_corp_user
    smb_corp_user Posts: 168  Master Member
    5 Answers First Comment Friend Collector Second Anniversary

    Could you describe the problem in more detail? The problem seems unclear to me. What is the expected result? I do not see a description of any error message.

  • aait
    aait Posts: 14  Freshman Member
    First Comment Friend Collector First Anniversary

    Anti-Malware signatures - latest version 2.1.1.20231130.0

    I have other ATP200 with Firmware 5.37 p2 which have Anti-Malware Signature 2.1.1.20240304.0

  • smb_corp_user
    smb_corp_user Posts: 168  Master Member
    5 Answers First Comment Friend Collector Second Anniversary

    Very well, so this is about quite outdated Anti-Malware signatures from November 2023, while at the same time you have got another ATP200 successfully updated to new signatures (March 2024).

    And as you said, neither reboot nor refreshing services makes any difference. By the way, does this include manual request for updates, if that is available in the GUI menus? Also no change?

  • aait
    aait Posts: 14  Freshman Member
    First Comment Friend Collector First Anniversary

    This's the result of manual update

  • smb_corp_user
    smb_corp_user Posts: 168  Master Member
    5 Answers First Comment Friend Collector Second Anniversary

    Thank you for the extra information. Looks like useful info.

    I admit that I personally do not know where to look for the cause of the problem now, and I do not have more to suggest than to back up the device config files and reset the whole device to factory defaults, maybe even reinstall the firmware or downgrade and then upgrade again. But that would be too much of a general approach like a beginner support agent.

    Therefore I will defer to and suggest that this issue should be looked into by a real Zyxel Team member in the hope that there still are some pinpoint things to check or look for to resolve the issue.

    Best of luck.

  • Zyxel_Stanley
    Zyxel_Stanley Posts: 1,386  Zyxel Employee
    100 Answers 1000 Comments Friend Collector Seventh Anniversary

    Hi @aait @smb_corp_user

    We have addressed this issue. And we are trying to fix this issue.
    Once there is further conclusion, we will update to you again.

  • Zyxel_Stanley
    Zyxel_Stanley Posts: 1,386  Zyxel Employee
    100 Answers 1000 Comments Friend Collector Seventh Anniversary

    The issue has been resolved on the server side. Please update your signature to verify the fix.

  • itxnc
    itxnc Posts: 102  Ally Member
    First Comment Friend Collector Seventh Anniversary

    We're seeing this exact same issue on our ATP200. All the other signature updates complete and are recent/current. But the Anti-malware will not update. We've rebooted, tried manual updates - no luck:

    How do we get it to ull the latest file?

  • Zyxel_Melen
    Zyxel_Melen Posts: 2,907  Zyxel Employee
    Zyxel Certified Network Engineer Level 1 - Switch Zyxel Certified Network Administrator - Switch Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate

    Hi @itxnc,

    Could you reference this FAQ to allow our engineer to remote access your ATP200 to check this issue?

    How to allow HTTPS Web GUI Access from WAN? (USG/USG FLEX/ATP/VPN) — Zyxel Community

    Please send me a private message after you configure it.

    Zyxel Melen


  • itxnc
    itxnc Posts: 102  Ally Member
    First Comment Friend Collector Seventh Anniversary

    Not sure what happened, but after a couple days - it finally updated. We had tried at least a dozen times. Weird.