Endpoint Protection

 View Only
  • 1.  Defination update

    Posted Mar 16, 2010 01:18 PM

    we noticed the files are big in c:\program files\common share\symantecshare\virus def folder for every client. I like to find out which file is update in the folder? It is only one file or all files in this folder get update?

     

    I saw virscas1.dat, virsca 2.dat --virscan7.dat which one i need to look at for daily base?



  • 2.  RE: Defination update

    Posted Mar 16, 2010 01:24 PM

    What is the size of that folder?

    Which is the version you are using?

    As far as I know SEP will keep three revisions of update in the computer..



  • 3.  RE: Defination update

    Posted Mar 16, 2010 03:29 PM

    In the virus defs folder the dated folders get replaced with each definition update and you need the whole folder.except if any .tmp files are present you can delete them.



  • 4.  RE: Defination update

    Posted Mar 16, 2010 07:27 PM

    Look at the dated folders under  C:\Program Files\Common Files\Symantec Shared\VirusDefs  and forget the files


  • 5.  RE: Defination update

    Posted Mar 16, 2010 09:33 PM
    But it cause some network traffic.
    I was asked why these three files same size 60MB and updated at different times 7:20, 10 and 11:30am today's date.
    in the folder c:\program files\common files\symantecshare\virusdef

    My questions is that 60MB is there before any defination update ? Or the 60MB files just get modified when every time the new def downloaded?

    Another question if we set up liveupdate at 12 hours period --download from SEPM server, how can I know it is business hour or off hour?

    We plan to set up an off-hour download def update from SEPM to the clients without using GUP or manual download and liveupdate servers, is it possible?

    I also cannot find any logs on SEPM server to show me how big the def update downloaded to the client PCs, which I have been asked for.


  • 6.  RE: Defination update

    Posted Mar 17, 2010 03:54 AM

    Another question if we set up liveupdate at 12 hours period --download from SEPM server, how can I know it is business hour or off hour?
    ---Symantec LU servers are scattered all across the globe and they are always live . So there is no businees and off business hours for these servers

    We plan to set up an off-hour download def update from SEPM to the clients without using GUP or manual download and liveupdate servers, is it possible?
    ----yes it is possible. Login to SEPM -Click Admin---> Server--->Local site -->Rt click properties -->Liveupdate and modify the schedule from there

    I also cannot find any logs on SEPM server to show me how big the def update downloaded to the client PCs, which I have been asked for.
    ---In SEPM there is no log which gives you the size of the LU downlaod