Best practices for file type exclusions on Symantec Protection for Network Attached Storage.

Article:TECH96713  |  Created: 2009-01-12  |  Updated: 2014-07-21  |  Article URL http://www.symantec.com/docs/TECH96713
Article Type
Technical Solution


Subject

Issue



What file types do Symantec recommend for exclusion from realtime scanning in a deployment of Symantec Scan Engine (SSE) or Symantec Protection Engine (SPE) for Network Attached Storage (NAS)?


Solution



As with any other realtime Antivirus scanner, there are certain file types that are not indicated for either real-time scanning, or frequent interactions by other processes.
This information largely depends on the environment being used.  The files in the list below are recommended to be excluded from realtime scanning.


In addition to the list below, there is a need to understand which files are likely to change on a frequent basis in the NAS environment,  and to consider them for exclusion from realtime scanning as well.

The following files change very frequently and are accessed by multiple users, so the scanners performance could be affected by scanning them in realtime.

    • Database files, such as MDB, LDB and NSF
    • User mailboxes
    • User profiles
    • Group profiles
    • Logs

 

NOTE: when scanning Windows User Profiles for instance, the number of Scan Requests generated is very high. In this scenario it's crucial to assess Hardware and Network Resources properly for the users not to experience slow or denied access to their profiles.


 



Legacy ID



2009101213443854


Article URL http://www.symantec.com/docs/TECH96713


Terms of use for this information are found in Legal Notices