If you are not on MR2, then I strongly recommend you upgrade to that first as a HUGE amount of fixes were included in that.If you try running liveupdate manually on one of the clients, does it update?

symantec endpoint protection management server not updating-34

As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone.

It requires huge amounts of memory and storage, as well as the high-speed power of the cloud.

The SEPM shows old virus definitions in "Admin Server Activity logs may provide details on the nature of the failure.

One possible cause is that old or corrupted virus definitions present on the SEPM prevent the SEPM's ability to update the SEP clients with new virus definitions.

LOG to be written to the SEP client's installation directory.

You should be able to see items such as failed connection attempts or other issues in there. i believe by default it is 2968: telnet Machine learning means Smarter Cybersecurity™ Solutions.

You can get enhanced debugging for a client by writing the following registry key and then forcing a definition update again from the console.

It may help determine the cause (and you can send it to Symantec if it's still not updating properly): [HKLM\Software\Symantec\Syol] Debug="ALL" That will cause VPDEBUG.

There are two levels at which IPv6 can be disabled: 1) At the adapter level: This is done by unbinding the IPv6 stack by launching and unchecking “Internet Protocol Version 6 (TCP/IPv6)”.

Failover Clustering behavior: Net FT, the virtual cluster adapter, will still tunnel traffic using IPv6 over IPv4.

2) At the registry level: This can be done using the following steps: A default Symantec Endpoint Protection (SEP) firewall policy has rules to Block IPv6 communication and IPv6 over IPv4 communication, which conflicts with the Failover Clustering communication over IPv6 or IPv6 over IPv4.