SEP performance on Server 2008 R2 Standard
Updated: 02 Mar 2011 | 8 comments
This issue has been solved. See solution.
Have a server running PDMS (Plant Design engineering software)
Server is 2008 R2 Standard with AV ONLY (RU6 MP2)
Performance is very bad. The entire PDMS directory has been excluded from scanning but that has not helped.
Removed SEP completely and everything runs as expected.
Any suggestions?
Discussion Filed Under:
Comments
hi
try disabling the real time scan called file system autoprotect, if its disabled in real time your weekend scans will take care ...
Please don't forget to mark your thread solved with whatever answer helped you : ) Rafeeq
I will try that and advise of
I will try that and advise of results. Thanks.
FYI, it's never a good idea
FYI, it's never a good idea to disable Autoprotect as a solution to an issue. It's one of your main defenses from infections.
Agreed. Disabling real time
Agreed. Disabling real time protection is not a solution, not even a bandaid.
We're having a very similar problem on one of Server 2k3 machines. It's just a file server for user and group folders. CPU keeps spiking to 50% and higher and network utilization spikes pretty high with real time protection running. We can't figure out why it's happening but we're running the latest release of SEP and it has been a problem over the last couple of revisions.
You'll want to do some
You'll want to do some digging as to WHAT processes and WHICH folders are being accessed by SEP. You can start with the sysinternal tools from Microsoft to watch the processes and activity. From there, perhaps you need other exclusions not just on the directory, but actives service EXE's, running processes, and if there is a database on there, that as well.
I 3rd, to NEVER disable auto-protect.
There is an online portal, save yourself the long hold times. Create ticket online, then call in with ticket # in hand :-) http://mysupport.symantec.com "We backup data to restore, we don't backup data just to back it up."
Hi, Try doing some
Hi,
Thanks and Regards,
Chetan Savade
Technical Support Analyst,
End Point Security, Enterprise Technical Support
Chetan, how is that going to
Chetan, how is that going to help and wouldn't that open up the machines to more risks?
Hi, This is applicable only
Hi,
This is applicable only if you are using Symantec endpoint protection manager (SEPM).
If you are using SEPM then create new antivirus and antispyware policy
Create new group in SEPM and move that server to new group.
Assign antivirus and antispyware policy to new group.
It won't open up the machines to more risks because we are not disabling any feature we are just changing advanced scanning and monitoring settings.
Thanks and Regards,
Chetan Savade
Technical Support Analyst,
End Point Security, Enterprise Technical Support
Would you like to reply?
Login or Register to post your comment.