Symantec Mail Security for SMTP 5.0.1 - Best Practices for Windows Installations
|Article:TECH85583|||||Created: 2007-01-19|||||Updated: 2011-03-03|||||Article URL http://www.symantec.com/docs/TECH85583|
You want to know which are the best practices when installing Symantec Mail Security for SMTP 5.0.1 on a Windows server.
Updates and Patches
Always have the latest updates installed on the running operating system and also the updates for Symantec Mail Security for SMTP 5.0.1
Microsoft Update Website
Symantec Mail Security for SMTP 5.0.1 Updates
NOTE: All Microsoft parameters described over the sections below are not supported by Symantec, they have been technically evaluated however for best direction or support, please contact the vendor directly.
We highly recommend you to set the proper speed/duplex on the NIC and switch port to avoid issues. The minimum speed we recommend is 100 Mbits Full Duplex.
Disable task offloading
Determines the time that must elapse before TCP/IP can release a closed connection and reuse its resources. We recommend setting it to 30 seconds.
Specifies the highest port number that TCP/IP can assign when an application requests an available user port from the system. We recommend setting it to 65000 ports.
For information about these and other TCP/IP parameters that are available:
For information about protecting the TCP/IP layer from attacks:
DEP on Windows 2003
Disable DEP on Windows 2003
Change the option on Boot.ini to /noexecute=AlwaysOff
Running with more than 2GB on Windows 2003:
Add the /3GB switch to boot.ini
Recommended settings if you have an antivirus installed on the same server:
Article URL http://www.symantec.com/docs/TECH85583