LiveUpdate Crippled My Network
And when I say "crippled," I mean employees were late clocking in because it took 5 minutes to load a web page with no pictures on it.
Here's what happened: I upgraded from 12.1 RU1 to 12.1.2 yesterday, and as soon as the install was finished everyone on the network started to notice that internet traffic came to just about a halt. I ran a speed test and found that we were getting somewhere around 0.2Mbps on a 3.0Mbps connection. That is bad, really really bad. Looking back at a bandwidth report from yesterday, there was over 2GB of traffic in under an hour all directed at my Symantec server, and from liveupdate.symantecliveupdate.com.
The reason this happened is that LiveUpdate was grabbing new virus defs because the ones on the server were about a month out of date. 12.1 RU1 stopped getting new definitions for some unknown reason (and this isn't the first time it's done this, either), so after trying various ways to get it to work I was ready to call Symantec tech support. I know that as soon as I called them they would want me to upgrade to the latest version of SEPM, so rather than argue about whether or not RU1 should be able to do something simple like get new virus definions, I figure'd I would go ahead and update. And fortunately, it did at least for now fix that problem. Last time it fixed the problem for about a week before I stopped getting definitions again.
Ok, lots of rambling, but here is what I need to know, if anyone can help: is SEPM/LiveUpdate *supposed* to start downloading as soon as it is installed, especially when it's out of date? And if that is normal, is there a way to control it? It is completely unacceptable for any computer to consume that much bandwidth on my network. This time it didn't kill our VOIP phones, but it did present a huge problem for the whole network.
If anyone knows a good/better way to control the LiveUpdate download, please let me know.