I'm a little confused on this. Are you trying to setup computers that will
never get the AV updates? Or are you trying to set them up so that they will
only get the updates from the internet? Or is it something else?
The computers are already setup and because of internet abuse, they were not allowed internet access. Once this was taken away they no longer get AV updates.
It is difficult to say.
Is your core server up to date with it's definitions?
You can check this by going to the first icon in Security and Patch Manager (Download Updates) and then the LANDesk Antivirus tab. Check the date in the top right corner.
It sounds like it may be a connectivity issue between your core and clients.
Are the inventory records for these computers up to date?
Get the AVService_Channel.log from the \Documents and Settings\All Users\Application Data\LANDeskAV folder on one of these clients and attach it to your reply.
The core server will update with no issue.
I am working on getting the log file.
Ok so just to make sure, you need computers that are not allowed access to
the internet to still get the AV updates.
Can they still access the core via http?
Sorry, we actually need the AVService_Update.log
From what I see in your log, it doesn't even look like the client tries to update from the core server.
Look at your LANDesk Antivirus Settings that that client is using and ensure that it is set as pictured below.
(Security and Patch Manager - Third icon dropdown - LANDesk Antivirus Settings - Select Setting to Edit - Click Edit - Virus Definition Updates section.
Run "Vulscan /changesettings /showui" on a test client to ensure that the settings get updated, (or push a change settings task).
Let me know what developers.
Also, after this is done, if you still have issues send me the AVBehavior_*.xml from your client's C:\Documents And Settings\All Users\Application Data\Vulscan directory.
Did you ever resolve this issue?
I would suggest opening a support ticket with LANDesk Support to get this pursued further.