Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
829
Views
0
Helpful
2
Replies

SR520 IOS Content Filter with Trend Micro

Go to solution
markher182
Level 1
Level 1

‎01-26-2011 07:04 AM - edited ‎03-11-2019 12:40 PM

I have gone through a lot of stuff with an SR520 and content filtering.  It seems to be very problematic. Originally Cisco stated they would not support Content Filtering on the SR520 then they decided to support it.  I currently have one SR520 that seems to have stopped filtering anything, including the blacklists.  Everything looks right to me but I am no expert with ZBFs.  If anyone has any insight as to what might be the problem.  I have included a Show Tech to this discussion

Labels:
79328-Show Tech.txt.zip
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
mirober2
Cisco Employee
Cisco Employee

‎01-26-2011 09:49 AM

Hello,

The device is configured with the following incorrect line:

ip host trps.trendmicro.com 216.99.133.100

This will force the router to resolve trps.trendmicro.com to 216.99.133.100, which is incorrect. This was an older server that was decommissioned by Trend Micro. The trps.trendmicro.com host should resolve to either 216.104.8.100 or 150.70.74.51.

I would recommend removing that line with a 'no ip host trps.trendmicro.com 216.99.133.100' and adding 'ip domain-lookup'. This will allow the router to dynamically resolve trps.trendmicro.com in case the IP addresses change again in the future. To test, you can do 'ping trps.trendmicro.com' from the device to make sure it resolves correctly.

Once you remove the offending line, check the output of 'show ip trm subscription status'. If your subscription status does not show as "active", you'll need to run 'trm register' to activate the license and get things working again.

Hope that helps.

-Mike

View solution in original post

0 Helpful
2 Replies 2

Go to solution
mirober2
Cisco Employee
Cisco Employee

‎01-26-2011 09:49 AM

Hello,

The device is configured with the following incorrect line:

ip host trps.trendmicro.com 216.99.133.100

This will force the router to resolve trps.trendmicro.com to 216.99.133.100, which is incorrect. This was an older server that was decommissioned by Trend Micro. The trps.trendmicro.com host should resolve to either 216.104.8.100 or 150.70.74.51.

I would recommend removing that line with a 'no ip host trps.trendmicro.com 216.99.133.100' and adding 'ip domain-lookup'. This will allow the router to dynamically resolve trps.trendmicro.com in case the IP addresses change again in the future. To test, you can do 'ping trps.trendmicro.com' from the device to make sure it resolves correctly.

Once you remove the offending line, check the output of 'show ip trm subscription status'. If your subscription status does not show as "active", you'll need to run 'trm register' to activate the license and get things working again.

Hope that helps.

-Mike

0 Helpful

Go to solution
markher182
Level 1
Level 1
In response to mirober2

‎01-31-2011 07:22 AM

Mike, that was exactly the problem!  Thank you! 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card