Video Screencast Help
Search Video Help Close Back
to help
Not able to make it to Vision this year? Get a sampling in the Best of Vision on Demand group.

Large SEP Download killed network

Created: 21 Mar 2011 | 3 comments
ManagedUser's picture
ManagedUser
0 0 Votes
Login to vote

Hi,

  We have recently put in SEP into one of our accounts. The SEP server is in the DC and is connected to an MPLS network with a 100Mb line with 5 sites of 100 users down 5 * 100Mb/s lines onto the same cloud. Recently the entire network ground to a hault, when the monitoring tools were analysed it showed SEP had pushed out 54GB/s data to the 500 client PC's and maxed out the 100Mb/s lines.

 Can we limit SEP to only push to a max number of PC's at one time. it looks like a 100 MB upgrade was pushed to all 500 PCs at once. Surely SEP should be able to limit what it does on the network?

 

thanks,

Discussion Filed Under:
, , , , ,

Comments

Chetan Savade's picture
21
Mar
2011
0 Votes 0
Login to vote
Chetan Savade
Technical Support

Hi, GUP - Group update

Hi,

GUP - Group update provider can help you to save bandwidth consumption.

Go through links for more details.

http://www.symantec.com/business/support/index?pag...

http://www.symantec.com/business/support/index?pag...

http://www.symantec.com/business/support/index?pag...

Thanks and Regards, 

Chetan Savade

Technical Support Analyst,

End Point Security, Enterprise Technical Support

Mithun Sanghavi's picture
21
Mar
2011
1 Vote +1
Login to vote
Mithun Sanghavi
Technical Support
Accredited

Absolutely.

Hello,

Absolutely.

First of All, what Symantec Endpoint Protection version have you installed?

 

This may give you some idea for controlling bandwidth usage..

Tips For Installing SEP In A Low Bandwidth Environment

https://www-secure.symantec.com/connect/articles/t...

 

Also, Check the Following:

How To Optimize Endpoint Protection for Branch Offices using GUPs, Load Balancing, and Location Awareness

http://www.symantec.com/business/support/index?page=content&id=TECH94122&actp=search&viewlocale=en_US&searchid=1300464815085

 

Some basic guidelines for GUP hardware/software considerations are as follows:

  1. Ensure that the machine being used to serve as the GUP has sufficient reserves of CPU/memory capacity to allow for its normal operations to continue while serving content to clients
  2. By default, Windows is configured to allow a maximum of 5000 TCP connections simultaneously. With this configuration, the GUP is capable of serving 40 client connections per second.
  3. Windows can be configured to allow a maximum of 65534 TCP connections simultaneously. With this configuration, the GUP is capable of serving approximately 180 client connections per second.

 

Mithun Sanghavi
Symantec Technical Support Engineer, SEP
MIM | MCSA | SCTS | ITIL v3

Follow me on Twitter: @mithun_sanghavi

Don't forget to mark your thread as 'SOLVED' with the answer that best helped yo

Rick Bywalski's picture
21
Mar
2011
0 Votes 0
Login to vote
Rick Bywalski

I would also add make sure

I would also add make sure your running a current build of SEP we had nightmares with this with the early releases.  Around MR3 or 4 it got alot better.  We use GUP's in all our offices and keep the SEPM at the data center as a fail over point for if  a GUP is down for more than 24 hours.   You can even throttle how many machine can hit a GUP at once.   If you have servers in each location I would recommend letting the server double as a GUP as it should be able to handle the traffic better than an desktop.

Technical Support

Symantec.com

Store

Community Stats

Total Content Items
Members
270,016