Multiple office WAN infrastructure best practices
I have implemented a SEPM solutions before in a small business environment, so I am quite familiar with the product, however I do not have any experience implementhing it in the enterprise. I would really appreciate any feedback from Symantec 'veterans' :).
This is our infrastructure:
- 10 physical locations with Symantec Antivirus v. 10, - 14 servers, 12 server groups (Symantec 10).
- Three biggest sites have 498, 420 and 150 clients respectively. There are 7 other offices with number of clients ranging from 13 to 80 per site.
- All of the sites are connected thru WAN (Sprint MPLS) network with T1/VPN backups.
- Deploy Symantec Servers to three biggest sites, replicating data and logs between them (no content replication).
- Deploy Group Update Provider to the 7 smaller sites and have them connect to the closest management server.
- GUPs would cache updates for the clients at the smaller sites, clients would still send status/download policies from main management servers.
I think this could work, but my boss is concerned about the amount of traffic that this is going to generate over WAN, which may get expensive. Realistically, how much traffic would a site of 80 clients generate in a day when Group Update Provider is being used? Would a dedicated server with replication use less bandwith?
Would I lose any functionality by having the clients update from Live Update Internet site directly, since they all have T1 connections anyway? Would Endpoint Manager still be able to track the version of definitions, and force update if neccessary?
I know it's a lot of questions in a single post, but I hope that someone could provide some insight :).