When running an on-demand scan using the Endpoint Protection client on Linux, the scan terminates prematurely if an inaccessible NFS volume is encountered.
VPDebug logs will show information similar to the following:
11:49:31.576586[_0xb29d3b90 (nil)_]|FINDNODE: FindFirstNode: <Path to NFS volume>
11:49:31.592078[_0xb29d3b90 (nil)_]|FINDNODE: FindFirstFile failed: 0x20000000
Shortly after they will show the following indicating RTV Scan is exiting:
11:49:32.596967[_0xb29d3b90 (nil)_]|0xb29d3b90: Thread RTV Scan 00000005 terminating
Additionally, users may note that in /var/log/messages the number of files scanned is less than expected, depending on where the scan terminated.
The scan exits prematurely because the NFS volume is not accessible.
This issue is fixed in Symantec Endpoint Protection 14.0. For information on how to obtain the latest build of Symantec Endpoint Protection, see Download the latest version of Symantec Endpoint Protection.
To workaround this issue, exclude the path to the inaccessible NFS volume from the scan. This will allow the scan to complete successfully. For information on how to configure such exclusions, refer to the following article: http://www.symantec.com/docs/TECH95274