Phone Lines icon GFI Support Home Start a conversation Sign in
Start a conversation
  1. KerioControl
  2. KerioControl - IPS
  3. Articles

IPS rules update failed: Signature is not valid

Overview

While trying to update the Intrusion Prevention System (IPS) signatures, the Last update check returns Failed - Signature is not valid error message.

ips_not_updating.JPG

Diagnosis

The local Kerio Control installation cannot reach Kerio servers (prod-update.kerio.com, ids-update.kerio.com) to update the signature databases. The signature response received from Update servers cannot be verified by Kerio Control.

It usually happens because of misconfigured Traffic rules or filter policies. The Error log may generate the following entry:

IPS rules update check failed: Couldn't resolve host name.

The procedure below involves Kerio Control downtime, so make sure to perform it outside of normal business hours.

Solution

  1. Navigate to Configuration -> Intrusion Prevention -> uncheck Enable Intrusion Prevention -> click Apply.
    ips_disabled.png
  2. Reboot Kerio Control from Status -> System Health.
    reboot_control.png
  3. Re-enable Intrusion Prevention after reboot is completed.
  4. Try to update IPS now by clicking Update now button.

Confirmation

Navigate to Configuration -> Intrusion Prevention, the Updates section will reflect that the IPS signatures database is updated successfully.ips_updated.png

 

Choose files or drag and drop files
Was this article helpful?
Yes
No

  1. Priyanka Bhotika

  2. Posted

Comments