Missing white Paper on Port & Protocols exceptions (Firewall), and exclusions for protections (virus) best practices
The existing data are obsolete
anti-Virus exclusions
- http://www.symantec.com/docs/HOWTO8334
- http://www.symantec.com/docs/HOWTO6697
- http://www.symantec.com/docs/TECH1017
Now 7.1 provides new folders, not excluded previous rules: like
C:\ProgramData\Symantec\SMP\EventQueue
Also new process are impacted McAfee or other protection vendors:
SMFDiscoveryOn64bitOS.exe
AexNsAgentHostSurrogate32.exe
About ports & protocols:
- Ports and Protocols for Symantec Management Platform 7.0 (DOC1892)
- Altiris Products Ports and Protocols (nov 2006) http://www.symantec.com/docs/HOWTO1041
- http://www.symantec.com/docs/HOWTO3401
Obsolete, or just port mess enumeration, Some missing, for latest patch solution direct vendors download ? etc...
Not really direct answering what we need to clearly configure on "any protection" exclusions, and firewall exceptions :(
Symantec should maintain a graphical, complete (for clients, servers, site servers, by solutions also), a White paper any customer or partner can provide a system manager, or a network manager, will clearly explain which exceptions & exclusions rules, they will have to build.
That's it.
Comments 7 Comments • Jump to latest comment
Very nice, I was looking for ports this week and its always a pain when stubbling across outdated info.
ref, Case # 415-274-511
~Pascal @ Kotte.net~ Do you speak French? Et utilisez Altiris: venez nous rejoindre sur le GUASF
Salut Pascal,
any news from them yet on that subject?
Regards,
RJ
Se below :)
~Pascal @ Kotte.net~ Do you speak French? Et utilisez Altiris: venez nous rejoindre sur le GUASF
Hi Pascal,
Do you know what this process is for?
SMFDiscoveryOn64bitOS.exe
Kind regards,
Eugene
Hi EugeneFT, this is a bit late in coming but SMFDiscoveryOn64bitOS.exe belongs to inventory solution and performs the Software Management Framework software scan.
It is usually launched from through the Symantec Management Agent (AeXNSAgentHostSurrogate32.exe) when executed as a task, but can also be exected through Standalone inventory (or manually) to upload a refreshed software inventory.
Kind Regards,
Ian./
Ian Atkin, IT Services, Oxford University, UK
Connect Etiquette: "Mark as Solution" those posts which resolve your problem, and give a thumbs up to useful comments, articles and downloads
Recommended Anti-virus exclusions for Altiris Agent 7.1
for the Windows clients part
And for the NS/SMP server:
What exclusions should be considered for SMP 7.1 to function correctly with an anti-virus solution installed?
Enjoy :)
~Pascal @ Kotte.net~ Do you speak French? Et utilisez Altiris: venez nous rejoindre sur le GUASF
Would you like to reply?
Login or Register to post your comment.