• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

need virus protection for ~25 computers

L

LBmtb

Member
We need virus protection where I work and we're trying to decide on what to buy for this.

* about 25 computers
* some users are really computer illiterate
* want some way of managing or viewing reports
* need virus definitions updated automatically and we need this to be pretty much transparent to the users

Considering these two right now . . .
http://enterprisesecurity.symantec.com/products/products.cfm?ProductID=155
or
http://www.mcafeesecurity.com/us/products/mcafee/managed_services/managed_vs.htm

McAfee seems to be cheaper. Is norton's 1 year of 'gold maintenance' basically virus definitions and technical support? Virus definition updates only last for a year without having to pay more to norton?

Which seems easier to implement and use? Anybody have experience with either?

Thanks!!
 
I have supported McAfee VirusScan Enterprise 7.0-8.0i, and it's a very nice program. Monitoring features require a separate plug-in type program though. I'm unsure about the Managed software you linked to. Will you be running your own definitions repository or will you be updating straight from McAfee?
 
we are using norton here at work, really easy to work with, installing new clients is very easy and all done centraly
 
I use to adminsiter a setup of around 130 computers and they used e-trust. It was very well done. That is my recommendation.
 
Our operation uses the McAfee Active VirusScan suite, which gets you VirusScan Enterprise 8.0i, ePolicy Orchestrator and some other stuff. I made a page showing how I would set up VSE 8.0i for a stand-alone installation, with some comments about using the advanced features, maybe it will be some use: http://www.omnicast.net/~tmcfadden/vse8/index.html I don't know how the feature set compares to the other vendors, having only tried this suite. Sorry I don't have any pics of ePO in there.

VirusScan Enterprise and the ePO Agent do take a chunk of resources. Compare before and after on the same Win2000 system.

If you get this setup, then build yourself a pre-customized VirusScan installer and feed it to ePO for distribution. If the installer itself is already fully configured and has a built-in "failover" update task, then the individual installations will be prepared to self-maintain in the event that they lose contact with the ePO mother ship. PM me any time if you need a hand 🙂
 
Have you tried them out yet?

I would look into Trend Micro's enterprise suite.

Although for a business that small, I would seriously consider trying out Sophos. It's a very powerful engine (but I found it didn't scale well across multiple large offices) that was designed for the network. If you want to try something simpler with less performance impact, go with Eset NOD32. If you really want to stress reports, then nothing beats McAfee's ePolicy Orchestrator <--- but I don't think 25 machines justify the overhead of running it (or Symantec's corp edt. server).
 
SysBuilder05 posted this in the Hot Deals forum for a downloadable copy of TrendMicro's PcCillin. Read the forum because there seemed to be a few catches. Everytime I pick up a review of AVs this one seems to be one of the best.

Here's the link:

http://forums.anandtech.com/messageview...atid=40&threadid=1571966&enterthread=y


*Edit: I misread the 25 computers part. Possibly Norton Corporate if you have the budget. Not that difficult to use and it's decent. Most of the schools I've attended use it over McAffee and they're dealing with hundreds of computers.
 
Another vote for Norton. While I've only used the home version, it's been the most reliable, stable and effective program I've found to date.

We have Macafee at work, and as a user it is the most infuriating piece of software I've ever come across. It makes work with large content files (e.g. images, videos, online documentation and help files) almost impossible because it is so slow. It also causes the PC to freeze solid during a scan, so that it's very easy to think the PC has crashed. I used to restart my PC at work several times a day because of this, until I worked out it was Macafee. Now, I take the opportunity to go and get a coffee, because that's usually how long I have to wait for it to finish. N.B. Version 8 (we've just upgraded) is worse than version 7.

Panda is OK, but it's internet protection module seems to have problems. Repeatedly dropped TCP/IP connections, failed downloads, etc. Only solution I've found, and one suggested by Panda support, is to edit the registry to disable this module.
 
Originally posted by: SagaLore
Originally posted by: Relayer
McAfee's ePO suck though...
Click to expand...

What else have you used to compare it to, and in what environment did you use ePO?
Click to expand...


I've never used anything else actually. I had epo running fine at one time, but it stopped pulling updates, now it won't push dats to workstations. I haven't really followed up with support from nai yet though. I have just tried reinstalling epo. If it worked, that would be great. I have workstations that have dats over a month old now. I am in a Netware environment, no AD or anything. I have about 100 or so workstations spread across a few different locations in the same city. I've been using epo since 2.0 and have the latest version 3.5 I think it is. Anyway, I need to make time to get it working correctly, or change all my workstations to get updates directly from nai.
 
Originally posted by: Relayer
Originally posted by: SagaLore
Originally posted by: Relayer
McAfee's ePO suck though...
Click to expand...

What else have you used to compare it to, and in what environment did you use ePO?
Click to expand...


I've never used anything else actually. I had epo running fine at one time, but it stopped pulling updates, now it won't push dats to workstations. I haven't really followed up with support from nai yet though. I have just tried reinstalling epo. If it worked, that would be great. I have workstations that have dats over a month old now. I am in a Netware environment, no AD or anything. I have about 100 or so workstations spread across a few different locations in the same city. I've been using epo since 2.0 and have the latest version 3.5 I think it is. Anyway, I need to make time to get it working correctly, or change all my workstations to get updates directly from nai.
Click to expand...

A nice feature that ePO has is that you can cascade your update schedule and locations. When I used it, I would have the agents check the main server twice a day for a new dat, and if that server wasn't available, it would check mcafee's site, and if that wasn't available it would check an unc path on a different local server (for emergencies). eTrust InoculateIT can also do this...
 
Do you have your own email server?

You could forward your domain to Messagelabs scanning engines and they'll strip off virus/spam before it gets to your server. (MCI also resells this service.) It's the only service I know of that guarantees 100% no viruses, including zero hour viruses.

Of course, this doesn't protect HTTP, FTP, or some lackey bringing in a CD from home that infects the network, so you'll still need something for the LAN.
 
Originally posted by: deadseasquirrel
Do you have your own email server?

You could forward your domain to Messagelabs scanning engines and they'll strip off virus/spam before it gets to your server. (MCI also resells this service.) It's the only service I know of that guarantees 100% no viruses, including zero hour viruses.

Of course, this doesn't protect HTTP, FTP, or some lackey bringing in a CD from home that infects the network, so you'll still need something for the LAN.
Click to expand...

In my research and product reviews, it's actually much cheaper to go with a hardware appliance you have inside your network that acts as an email gateway between the outside and your mail server.
 
Symantec AV corporate edition works pretty well. You setup a server with the server side installation, then install the client on the PC's. The server checks for the latest definitions and pushes them down to the clients however often you want it to do. You can also setup a central quarantine area for infected files, etc. etc.
 
Originally posted by: Relayer
Originally posted by: SagaLore
Originally posted by: Relayer
McAfee's ePO suck though...
Click to expand...

What else have you used to compare it to, and in what environment did you use ePO?
Click to expand...


I've never used anything else actually. I had epo running fine at one time, but it stopped pulling updates, now it won't push dats to workstations. I haven't really followed up with support from nai yet though. I have just tried reinstalling epo. If it worked, that would be great. I have workstations that have dats over a month old now. I am in a Netware environment, no AD or anything. I have about 100 or so workstations spread across a few different locations in the same city. I've been using epo since 2.0 and have the latest version 3.5 I think it is. Anyway, I need to make time to get it working correctly, or change all my workstations to get updates directly from nai.
Click to expand...
Relayer, if your Agents are responding to ePO at all, then change the stacking order of the Repository search so your ePO server isn't on top. Let the clients look first to NAI's FTP and HTTP repositories for DAT updates, as a stopgap measure. Won't take long to find out if that helped.

 
Originally posted by: mechBgon
Originally posted by: Relayer
Originally posted by: SagaLore
Originally posted by: Relayer
McAfee's ePO suck though...
Click to expand...

What else have you used to compare it to, and in what environment did you use ePO?
Click to expand...


I've never used anything else actually. I had epo running fine at one time, but it stopped pulling updates, now it won't push dats to workstations. I haven't really followed up with support from nai yet though. I have just tried reinstalling epo. If it worked, that would be great. I have workstations that have dats over a month old now. I am in a Netware environment, no AD or anything. I have about 100 or so workstations spread across a few different locations in the same city. I've been using epo since 2.0 and have the latest version 3.5 I think it is. Anyway, I need to make time to get it working correctly, or change all my workstations to get updates directly from nai.
Click to expand...
Relayer, if your Agents are responding to ePO at all, then change the stacking order of the Repository search so your ePO server isn't on top. Let the clients look first to NAI's FTP and HTTP repositories for DAT updates, as a stopgap measure. Won't take long to find out if that helped.
Click to expand...
Thanks. I have a few machines setup that way. Another thing that's funny is the server itself can't get the latest dats from epo. It always says it has the latest dats though they are a month old. It seems like the workstations just aren't trying to get updates. You can do a manual update and it gets the dats. How could this happen to every machine though. I even tried making a new framepkg.exe and it didn't make a difference on a couple PC's. I think it's time I called nai for support. I'd appreciate any other suggestions though.

 
Originally posted by: Relayer
Thanks. I have a few machines setup that way. Another thing that's funny is the server itself can't get the latest dats from epo. It always says it has the latest dats though they are a month old. It seems like the workstations just aren't trying to get updates. You can do a manual update and it gets the dats. How could this happen to every machine though. I even tried making a new framepkg.exe and it didn't make a difference on a couple PC's. I think it's time I called nai for support. I'd appreciate any other suggestions though.
Click to expand...

Sounds like a familiar situation I had... have you created a separate group of policies for the ePO server(s)? Make sure that the default dat schedule the ePO is following isn't to download the new dats from itself. It needs to have a dedicated schedule that downloads direct from mcafee.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top