I have a problem with automatic download updates or automatic download updates on Windows Server 08,10 or 12. Windows Server returns still Warning log: Unable to Connect: Windows is unable to connect to the automatic updates service and therefore cannot download and install updates according to the set schedule. Windows will continue to try to establish a connection.
Thank you for your help
does the request reach the MWG?
If not try to define a proxy for the system account.
netsh winhttp set proxy <proxy : port>
netsh winhttp import proxy source=IE
If this is done, it could be possible that you need to use an authentication bypass for these systems.
in addition to christians comment:
Windows Updates should be completly whitelisted on the web gateway. There is a McAfee Supplied List that you can use; just search for "Windows Update Hosts" in the supplied lists section.
If those updates are going through the web gateway and the whitelist matches (you can verify this with the rule tracing) I would recommend to create a tcpdump on the client as well as on the web gateway to see what exactly is happening with the connection.
Thank you for your help.
I try define a proxy and create windows updates whitelist with McAfee Supplied List witch are on the top of "Rules" hierarchy. But still It doesn't work. I hope that tcpdump on the client and web gateway gives me the right way to solve this mystery .
in the past I had a related problem, in this case the CRC value didn't match.
I would test a bypass using "Client.IP equals <IP>"** - Stop Cycle, if this still not work I also would also add the "Enable HTTP Tunnel" Event.
@snoehler what do you think?