Data Loss Prevention

 View Only

  • 1.  SDLP Network Discover installation in virtual environment

    Posted Sep 17, 2013 03:15 AM

    While setting up test SDLP environment for internal educational purpose I have faced the problem of lacking hardware. I only have one physical server. The question is: could Network Discover/Prevent components be installed in virtual invironment on the same physical server where the Enforce-Endpoint-Oracle are set up in single-tier installation scenario? This physical server is running on Windows Server 2008 R2 Enterprise, has enough RAM to handle VMs (Hyper-V role enabled), but has only one NIC. The same question is about setting up the Data Insight in single-tier mode on the physical server where Enforce is being hosted.



  • 2.  RE: SDLP Network Discover installation in virtual environment

    Broadcom Employee
    Posted Sep 17, 2013 09:07 AM
    If you are running this environment for a testing, that will be OK to install all the servers inside HyperV. Just remember to use bridged network of the HyperV VMs.


  • 3.  RE: SDLP Network Discover installation in virtual environment

    Posted Sep 17, 2013 01:03 PM

    Hello,

    Just to add .. HyperV is not supported and nor do the Oracle on a virtual machine ... Yes, you may use DLP discover server on a VMware virtual machine. So if you are ok to use DLP without support from Symantec you may try it the way you want .. Just a Disclaimer 

    Supported testing envirnment is only for one tier, i.e 1 Detection Server, Enforce and Database on the same machine (Physical) .. 

    Thanks,



  • 4.  RE: SDLP Network Discover installation in virtual environment

    Posted Sep 18, 2013 12:58 AM

    Thank you for replies. Will this work for one physical server with one NIC? The question is: could Network Discover/Prevent components be installed in virtual invironment on the same physical server where the Enforce-Endpoint-Oracle are set up in single-tier installation scenario?

    I have only one physical server and have already installed Enforce-Oracle-Endpoint on that server. Hyper-V is also enabled. Is it OK to put other detection servers inside that Hyper-V? What should I consider if I do so? I am concerned about communication between these virtualized detection servers and Enforce.



  • 5.  RE: SDLP Network Discover installation in virtual environment

    Posted Sep 18, 2013 03:23 AM

    Given that this is a test lab, you can add multiple detection channels under the server settings. This way you will be able to have multiple detection functions on a single server.

    So yes, you can have a one tier architecture with multiple servers. However, you cannot have network monitor function due to lack of a second physical NIC.

     



  • 6.  RE: SDLP Network Discover installation in virtual environment

    Posted Sep 18, 2013 04:37 AM

    Hi,

    "test lab" means that Symantec Support team does not support such architecture. It is only for testing the software.

    "could Network Discover/Prevent components be installed in virtual invironment on the same physical server where the Enforce-Endpoint-Oracle are set up in single-tier installation" - yes, I have such architecture in VMware environment.

    "Will this work for one physical server with one NIC?" - yes, as deniskattithara said only Network Monitor required two NIC.

    Regards.