Endpoint Protection

HI All,

I have t redesigned existing Architecture for my enterprises. At present for Global sites we have different SEPM for South American Countries, US locations , UK, Africa, and Aisa Pecific countries,

As per sysmantec docuementation I studied best practices and redesigned it and befor sending approval need ur suggestions too. . I will welcome what can be the scenario for GEO sites if have to manage approx 15 countries worldwide. Good link connectivity across globe to each other, Good SEPM Hardware , Failover, Replication and for Live update what can be consider. Can LUA can be used for clients update? I read this can be used for only SEPM update .

I planned for a single SEPM with failover , placed GUP in each continent only, No placed GUP for each location. what ur recomendation, if for e.g. Norvey clients approx 500 receive updates from Ireland installed GUP Server? your recomendation, GUP for each location or centrally installed GUP for all locations?

pls suggest. will welcome your feedback for redesign.

Regards

AKS

LUA really shouldnt be used for updating clients. GUPs are your best option.

See here:

When to use LiveUpdate Administrator

http://www.symantec.com/docs/TECH154896

If you have a dedicated GUP then it should be fine providing for those clients assuming you have decent bandwidth.

HI Brian,

Thanks for your Input. and what about design as I mentioned and I designed?

Hi,

Thank you for posting in Symantec community.

I am sure you must have gone through these articles: Top 10 Symantec Best Practices - Deploying Symantec Endpoint Protection Architecture

http://www.symantec.com/docs/TECH92051

Best Practices with Symantec Endpoint Protection Group Update Providers

http://www.symantec.com/docs/TECH93813

I would also recommend to use GUP at each remote sites to reduce number of SEPM's. There is only one disadvantage with Group update providers that it can not upgrade clients. To upgrade remote clients either you will have to push out client packages manually or can plan with any other method as well.

Do not use centrally installed GUP for all locations.

To replicate SEPM's data make sure there is sufficient bandwidth at WAN link though you can configure replication during non-production hours.

HI Chetan,

Thanks Chetan for your input, Sorry! I was on long vacation leave. Yes, i gone through the best practices and try to apply guidelines.

Ok, GUP for each site apply would be better , will try to get any server from remote site. LUA as Brian suggested for client also, Here I was assuming LUA can be used to distribute live updates only to SEPM's Servers on enterprise. If LUA will distribute to clients, Here my query is that , if somehow GUP is not working, all remote clients will receive updates from GUP, won’t cause bandwidth issue? Good suggestion by Brian, thanks, but this concern worries me. at present LUA I have configured to distribute daily definition to only our all SEPM's, not clients.

Regrds,

AKS

LUA can distribute definitions to SEPM and clients both. We can configure that way.

As per your concern if GUP is not working clients will try to reach SEPM & may increase bandwidth. But i it may happen only if they are allowed to do so, generally we suggest to select an option "Never bypass GUP" though it's not available.

Go through this article as well: When to use Liveupdate Administrator?

http://www.symantec.com/docs/TECH154896

Is there any update?

OR

If query has been resolved mark this thread as a solved with the best answer that helps you.