Configuring Network Scan Settings in Symantec Endpoint Protection

Article:TECH95508  |  Created: 2009-01-13  |  Updated: 2014-01-03  |  Article URL http://www.symantec.com/docs/TECH95508
Article Type
Technical Solution


Environment

Issue



How are network scan settings configured in SEP?

 


Solution



Configuration for network scans includes the following options:
 

  • Configure whether or not your Auto-Protect trusts files on the remote computers that run Auto-Protect.
  • Specify whether or not your computer should use a cache to store a record of the files that Auto-Protect scans from a network.


By default, Auto-Protect scans files as they are written from your computer to a remote computer. Auto-Protect also scans files when they are written from a remote computer to your computer.

When you read files on a remote computer, however, Auto-Protect might not scan the files. By default, Auto-Protect tries to trust remote versions of Auto-Protect. If the trust option is enabled on both computers, the local Auto-Protect checks the remote computer's Auto-Protect settings. If the remote Auto-Protect settings provide at least as high a level of security as the local settings, the local Auto-Protect trusts the remote Auto-Protect. When the local Auto-Protect trusts the remote Auto-Protect, the local Auto-Protect does not scan the files that it reads from the remote computer. The local computer trusts that the remote Auto-Protect already scanned the files.

Note: The local Auto-Protect always scans the files that you copy from a remote computer.

To enable Network Scanning from the Symantec Endpoint Protection Manager, please do the following:
 

  1. Under the Policies Tab, select Antivirus and Antispyware.
  2. Click the policy you would like to modify and select Edit the Policy.
  3. Click File System Auto-Protect.
  4. Under Network Settings, enable Network.
  5. Click OK.
  6. Assign the policy by clicking Assign the Policy, then check each group to which the policy should apply.
  7. Click Assign, then click Yes.


The trust option is enabled by default. If you disable the trust option, you might reduce network performance.

To disable trust in remote versions of Auto-Protect
 

  1. In the client, in the sidebar, click Change settings.
  2. Next to Antivirus and Antispyware Protection, click Configure Settings.
  3. On the File System Auto-Protect tab, click Advanced.
  4. In the Auto-Protect Advanced Options dialog box, under Additional Advanced Options, click Network.
  5. Under Network scanning settings, uncheck Trust files on remote computers running Auto-Protect.
  6. Click OK until you return to the main window.


You can configure your computer to use a network cache. A network cache stores a record of the files that Auto-Protect scanned from a remote computer. If you use a network cache, you prevent Auto-Protect from scanning the same file more than one time. When you prevent multiple scans of the same file, you might improve system performance. You can set the number of files
(entries) that Auto-Protect scans and remembers. You can also set the timeout before your computer removes the entries from the cache. When the timeout expires, your computer removes the entries. Auto-Protect then scans the files if you request them from the remote computer again.

To configure a network cache
 

  1. In the client, in the sidebar, click Change settings.
  2. Next to Antivirus and Antispyware Protection, click Configure Settings.
  3. In the Antivirus and Antispyware Settings dialog box, on the File System Auto-Protect tab, click Advanced.
  4. In the Auto-Protect Advanced Options dialog box, under Additional advanced options, click Network.
  5. In the Network Scanning Settings dialog box, check or uncheck Network cache.
  6. If you enabled the network cache, use the defaults or do any of the following actions:

    • Type the number of seconds for which you want entries to remain in the cache before your computer clears the cache.
    • Use the arrows or type in the number of files (entries) that you want Auto-Protect to scan and remember.
     
  7. Click OK until you return to the main window.
     



References
Client Guide for Symantec Endpoint Protection and Symantec Network Access Control



 




Legacy ID



2009081307565748


Article URL http://www.symantec.com/docs/TECH95508


Terms of use for this information are found in Legal Notices