Video Screencast Help
Give us your opinion and win with Symantec! Please help us by taking this survey to tell us about your experience with Symantec Connect, so that we can continue to grow and improve.  Take the survey.

SEPM Server is causing excessive Bandwidth utilization in one of my sites

Created: 12 Sep 2012 | 7 comments

It is again consuming all the bandwidth in one of my sites, it is using 75% for certain times of the day...The Main (SEPM) server is in New York, the site is in Virginia...the increase in bandwidth is causing network drops to other much needed resources. How can I control it so that SEPM does NOT monopolize the bandwidth?

Clients are Windows 7 64 Bit Systems, XP 32 Bit systems and 2003/2008 on the Server end.

There are GUP's in each site which clients receive the updates from...The same is true for this site, but the network bandwidth will spike and we have run charts that point to the SEPM server as the reason why.

Comments 7 CommentsJump to latest comment

Ashish-Sharma's picture

Minimizing network traffic from client-to-server communications in Symantec Endpoint Protection Manager 12.1

How To Optimize Endpoint Protection for Branch Offices using GUPs, Load Balancing, and Location Awareness

Check this thread

Symantec EndPoint Protection 11.x Clients Updates from Management Servers Outside their Managed Scope

Abnormal Network Bandwidth usage from SEPM Server to clients

Thanks In Advance

Ashish Sharma

Brɨan's picture

Have you run the GUP content monitor to ensure the GUP is activated and actually functioning as GUP?

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

W007's picture


You can use GUP Distribution Monitor

SEP Content Distribution Monitor (for GUP health-checking)

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

pete_4u2002's picture

thats monitoringtool, which shows what all machines are GUP and status of their, i.e. up or down. very useful tool

Mithun Sanghavi's picture


Similar Issue on this Thread:

GUP would download full defs when the client is out of date for a number days. However the traffic increases with each heartbeat interval when the GUP client fails to update itself. 

Check these Articles:

SEP clients download the same content repeatedly from the SEPM or GUP when they have low disk space

When will a client download a full definition set from a Symantec Endpoint Protection Manager or Group Update Provider?

Symantec Endpoint Protection clients download full definitions from Group Update Provider or from Symantec Endpoint Protection Manager

With default LiveUpdate content revision settings configured within the Symantec Endpoint Protection Manager, clients are downloading full definition updates instead of delta updates

There is a tool which you could use for GUP health-checking:

SEP Content Distribution Monitor


Hope that helps!!

Mithun Sanghavi
Associate Security Architect


Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

Chetan Savade's picture

Hello Bryan,

Make sure following changes are present under liveupdate policy.

Maximum time that clients try to download updates from a Group Update Provider trying the default management server - Set this option to Never

Limit the amount of bandwidth that the GUPs can use when it downloads content from the Symantec Endpoint Protection Manager (SEPM) from within the policy on the Symantec Endpoint Protection Manager.

Screenshot is attached to the reference.

Chetan Savade
Sr.Technical Support Engineer, Endpoint Security
Enterprise Technical Support

Don't forget to mark your thread as 'SOLVED' with the answer that best helps you.<

cus000's picture

Please check if there's any client having lack of disk space at c:/