We use BIG-IP for AV checks before allowing connection to VPN. We have set the rule to disallow access if AV definitions are older than 7 days. However we found the access is denied even if Virus and Antispyware definitions are uptodate. On further checks we found that the other Symantec components Proactive Threat Protection definitions were more than 7 days old. Symantec does not release these definitions daily and we confirmed the definitions were the latest that Symantec had released.
Is it possible to configure the product to only check the Virus and Antispyware definitions when it does the checks?