Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Symantec Data Loss Prevention high availability options

Created: 29 Apr 2013 | 5 comments
UFO's picture

Dear colleagues,

Does anyone knows what recommendations does Symantec give for building high available solution for Symantec Data Loss Prevention?

Looking for different options to make the full DLP with all modules included to be available at any time. Solutions for different modules could be different (e.g. I can install the same Endpoint detection server on other [virtual] sefver, set up the same agent configuration and secure endpoint detection server).

I'd apprectiate links to any official Symantec documentation that describes how to solve the problem.

Operating Systems:

Comments 5 CommentsJump to latest comment

yang_zhang's picture

You can use Symantec's VCS product to make a cluster of your Oracle and DLP Services.

You can refer to this thread:

https://www-secure.symantec.com/connect/forums/loa...

 

If a forum post solves your problem, please flag it as a solution. If you like an article, blog post or download vote it up.
UFO's picture

Thank you!

The link you provided contains information on Enforce + Oracle. What about other DLP components? Network Monitor? Data Insight? Other detection servers? Does Symantec has high availability recommendations for those?

STS: DLP

UFO's picture

Guys, do you have suggestions for all DLP components?

STS: DLP

pete_4u2002's picture

basically it is required to backup enforce and DB , as all the contents,incident, polcies are here. Hence detections servers are not that importanant, you just need to install and point to enforce server.

jgt10's picture

Be careful!

Unless DLP has gotten some serious upgrades/enhancements, all you can do is a cold standby.  Cutover would require manual intervention.

The Enforce server and the detection servers don't have a concept of "mutliple" Enforce servers.  If you point two or more Enforce servers at a detection server, your system is likely to behave badly.

Likewise, the Enforce server has no concept that another Enforce server could be using the database. If two Enforce servers access the same database, I shudder to think what would happen.

JGT

--
John G. Thompson
JOAT(MON)