www

Directly contact our Support Team

Troubleshoot Bitdefender failed updates using Wireshark

Context

When your Bitdefender product cannot obtain product / signature updates from our Update Server, the Bitdefender Support Team may request a packet capture for troubleshooting the issue. For this purpose, we recommend using Wireshark, a free (open source) packet capture software broadly used for analyzing network traffic.

Issue

The Bitdefender Support Team usually requests a Wireshark capture for the following scenarios:

  • The endpoint or the relay server fail to retrieve updates from Bitdefender Update Server (upgrade.bitdefender.com) or from the local relay server with errors indicating that a content-filtering solution or a network firewall might be blocking or filtering the packets.

    For example, error code 1011, which indicates an IO time out in the Bitdefender product interface:

    Bitdefender Endpoint Security Tools - update error 1011

  • Excessive traffic bandwidth usage during the distribution of product / signature updates to target endpoints.

Solution

Follow the next instructions to capture network packets with Wireshark and send them to Bitdefender Support Team:

  1. Install the Wireshark application.
  2. Launch Wireshark.
  3. Click Capture > Options…

    Troubleshoot Bitdefender failed updates using Wireshark

  4. Click the interface on which you need to capture packets.

    Troubleshoot Bitdefender failed updates using Wireshark

  5. Click Start to start the capture.
  6. Reproduce the reported issue.
    note Note:

    Avoid running any internet application during the capture (close all web browsers, instant messengers etc.).

  7. After reproducing the issue, return to Wireshark and click Stop.
  8. Click File > Save as to save the capture as a default libpcap file format (.pcapng extension).
  9. Send the capture file to Bitdefender Support Team via the support ticket.
Can't find a solution for your problem? Open an email ticket and we will answer the question or concern in the shortest time possible.

Rate this article:

Submit