Messaging Gateway

Hi All,

I just want to ask if the virus definition used by Symantec endpoint protection is the one also used by Symantec Messaging Gateway? or vice versa. 

TIA for your response.. 

Hi akocjie,

Cheers for the post. By default SMG updates certified AV definitions three times per day, just like SEP 12.1. 

Certified Definitions - Detections Added
https://www.symantec.com/security_response/definitions/certified/

Personally I recommend using Rapid Release (aka Rapid Response) definitions at the mail gateway, especially now that RR defs use a new technology that has greatly reduced the size of the files involved.

Obtaining definitions when a new, emerging threat is discovered
http://www.symantec.com/docs/HOWTO53892
 

Please do keep this thread updated with your progress, or mark the thread Solved if you have received your answer.

With thanks and best regards,

Mick

Extra note: this issue is now fixed.  Please do use RR defs with SMG!

High bandwidth usage when using Rapid Response AntiVirus definitions
http://www.symantec.com/docs/TECH232871

Hi Mick,

Sorry if you misunderstood my question.

My question is. If SMG and SEP is using the same virus definition in detecting virus/malware or not?

Thanks also for your response. :D

Hi akocjie,

Yes, the same AV Engine is under the hood of both products, consuming the same certified defintions by default.  (There are different capabilities and components to both products of course- they are built for different purposes.)  I recommend having the mail perimeter update its definitions more frequently (RR defs) than SEP's default three times per weekday.  With these latest RR defs it will catch new threats that SEP using certfied defs will not.

Let me know if that is what you meant or-?

With thanks and best regards,

Mick

Hi again,

Just a ping to see if your querstion has been answered?  This is still marked "Thread Needs Solution"