is a Group Update Provider. Every client installation of SEP 11 can act as a GUP without installing anything special.
In the Location policy you can specify an IP address for a GUP. When a SEP 11 client receives the policy and notices its own IP address is supposed to be a GUP, a mini HTTP server fires up. This mini HTTP server is completely independent of SEP itself.
The mini HTTP server will contact the SEPM server and download definitions. These downloaded definitions are 100% independent from the ones used by SEPM itself. Again, the GUP functionality is completely separate from the SEP itself so what the client shows as its definitions is no way representative of what the GUP has for definitions.
Other clients that receive the same Location policy will see they are supposed to go to a GUP for their definitions instead of the SEPM server.
For example, we have a server in each remote office. With SAV 10, we had to install all of the software to make it a secondary parent server so it could distribute definitions locally. With SEP, we simply set the IP address of the remote office server as a GUP. Then all clients in that office know to go to their local server for definition updates instead of across the WAN.
HTH,
Ray