Hi Grant,
Thanks for your verbose answer.
You wrote:
Using two HP DL 380's as virus scanners (redundancy and load balancing).
We use almost the same setup.
- Sometimes complaining that it cannot update the virus definitions.
filer a couple of times. (even with "vscan options mandatory_scan = off")
- This situation caused a denial of service to CIFS files on the
Yep, same here with Symantec.
- Mitigation, we have a *NIX script that monitors the filer's
syslog.
The idea's not bad.
- Old version had problems scanning big files. 100 meg or so.
PPT
files were especially bad.
Symantec does not like big files, either. I was forced to switch off the blocking of files in case a time-out occurs (you can configure that with Symantec), which of course is not ideal, security-wise.
Have had to exclude .zip .tar .rar as well as .ppt from scanning. Run Norton corporate AV on the desktops which limits our exposure slightly.
Uh? Naw, the archive formats work well with Symantec, it's just a size issue, most often with office documents. However, we also use a different AV product on the client side.
Over all, the product works okay. If I have my say, I would prefer using something else. Our organization bought it because it was cheap. You get what you pay for.
YGWYPF? Not sure in this special case. Symantec is certainly not the cheapest company around, but our problems are very similar.
Current vscan options vscan options timeout: 10 sec vscan options abort_timeout: 10000 sec vscan options mandatory_scan off vscan options client_msgbox off
Same.
Kind regards, Mark Neis