Calguns.net  

Home My iTrader Join the NRA Donate to CGSSA Sponsors CGN Google Search
CA Semiauto Ban(AW)ID Flowchart CA Handgun Ban ID Flowchart CA Shotgun Ban ID Flowchart
Go Back   Calguns.net > GENERAL DISCUSSION > Technology and Internet
Register FAQ Members List Calendar Mark Forums Read

Technology and Internet Emerging and current tech related issues. Internet, DRM, IP, and other technology related discussions.

Reply
 
Thread Tools Display Modes
  #1  
Old 12-16-2013, 11:32 AM
Barney Fife's Avatar
Barney Fife Barney Fife is offline
CGSSA Associate
 
Join Date: Mar 2008
Posts: 4,443
iTrader: 0 / 0%
Default IT Pros. Network AV preference and why?

Hey all,

My office uses Symantec Enterprise edition currently. Unfortunately even with extreme configuring it makes a huge performance hit on workstations trying to process millions of tiff images. A slight delay makes huge productivity issues.

So we are cruising around looking at other options. We only need 50 seats for this.

Thanks!
__________________
"Capitalism is the unequal distribution of wealth; Socialism is the equal distribution of poverty ... Communism is socialism with a gun at your back." - Sir Winston Churchill
Reply With Quote
  #2  
Old 12-16-2013, 12:15 PM
ocabj's Avatar
ocabj ocabj is offline
Calguns Addict
 
Join Date: Oct 2005
Location: Riverside
Posts: 7,156
iTrader: 40 / 100%
Default

Are these 'workstations' batch processing these "millions of tiff images"? If so, I take it that then there's no interactive physical 'console' access, right? Then forget active scanning and go with a passive method. Passively scan the local filesystems in the off hours when there's no processes on them.

Isolate these hosts on private RFC1918 space. Use deep packet inspection to actively scan anything going between the hosts and publicly routed IPs for viruses and malware.
__________________

Distinguished Rifleman #1924
NRA Certified Instructor (Rifle and Metallic Cartridge Reloading) and RSO
https://www.ocabj.net | http://jocabphoto.com

My AR15 Service Rifle - Used for CMP/NRA High Power Service Rifle Competitions
My Eliseo R5 (Remington 700) Tube Gun - Used for NRA High Power (Match Category) Competitions
My M1 Garand Service Rifle - Used for JCG Matches, rebuilt by Dean's Gun Restorations
Reply With Quote
  #3  
Old 12-16-2013, 12:48 PM
Barney Fife's Avatar
Barney Fife Barney Fife is offline
CGSSA Associate
 
Join Date: Mar 2008
Posts: 4,443
iTrader: 0 / 0%
Default

Quote:
Originally Posted by ocabj View Post
Are these 'workstations' batch processing these "millions of tiff images"? If so, I take it that then there's no interactive physical 'console' access, right? Then forget active scanning and go with a passive method. Passively scan the local filesystems in the off hours when there's no processes on them.

Isolate these hosts on private RFC1918 space. Use deep packet inspection to actively scan anything going between the hosts and publicly routed IPs for viruses and malware.
Been thinking like that, but the rub is the turnover. Typically within 24- 48 hours or less the images come in, are processed, and back to the client.

Still mulling something like this.
Thanks!
__________________
"Capitalism is the unequal distribution of wealth; Socialism is the equal distribution of poverty ... Communism is socialism with a gun at your back." - Sir Winston Churchill
Reply With Quote
  #4  
Old 12-16-2013, 4:06 PM
CGT80 CGT80 is offline
Veteran Member
 
Join Date: Jul 2008
Location: Fontana, CA USA
Posts: 2,761
iTrader: 14 / 100%
Default

I use Eset smart security for my home computer. My neighbor is a professional IT guy who works with programming and the communications systems for local law enforcement. He is the one who recommended Eset as that is what he uses. My desktop runs much faster with Eset over Norton or McAffe.

I can't help you with advice for using it for a network. I dabbled in that a little in high school and college but never pursued it.
__________________
He who dies with the most tools/toys wins
Reply With Quote
  #5  
Old 12-16-2013, 8:41 PM
ocabj's Avatar
ocabj ocabj is offline
Calguns Addict
 
Join Date: Oct 2005
Location: Riverside
Posts: 7,156
iTrader: 40 / 100%
Default

The way I'm viewing the problem of anti-malware software affecting I/O on the processing hosts is that these hosts that are doing the tiff processing should be secured at the physical layer (hosts should not be touched by non-IT personnel; no one should be logging on at console and launching a web browser or email client) and network layer (hosts should be isolated from everything else on the network; private VLAN/subnet).

This will maximize the local I/O (CPU, disk, memory bus) since the anti-malware won't be needed at the application layer of the hosts.

Then run some sort of tap dividing the private VLAN containing the processing hosts and the rest of the network (intra and inter) to a box designed to do deep packet inspection of the inbound traffic (and outbound if you so wish) to scan for malware. Or, you can build a host to function as the 'firewall', with multiple interfaces (one public and one private vlan), and have the deep packet inspection occur on the firewall box and let it decide whether or not to forward that traffic to the other interface.

This architecture is the only way I can think of totally maximizing the resources on your processing hosts, since anti-virus/anti-malware will never actually be taking place on the hosts.

I know this is how some CGI, special effects, etc shops isolate their processing servers, since they not only deep packet inspect for malicious data, but they also want to ensure data isn't getting leaked (e.g. someone trying to exfiltrate yet to be released footage of production films).
__________________

Distinguished Rifleman #1924
NRA Certified Instructor (Rifle and Metallic Cartridge Reloading) and RSO
https://www.ocabj.net | http://jocabphoto.com

My AR15 Service Rifle - Used for CMP/NRA High Power Service Rifle Competitions
My Eliseo R5 (Remington 700) Tube Gun - Used for NRA High Power (Match Category) Competitions
My M1 Garand Service Rifle - Used for JCG Matches, rebuilt by Dean's Gun Restorations
Reply With Quote
  #6  
Old 12-16-2013, 8:54 PM
ExtremeX's Avatar
ExtremeX ExtremeX is offline
Calguns Addict
 
Join Date: Sep 2010
Location: SoCal
Posts: 6,521
iTrader: 41 / 100%
Default

My preferred Vendor - http://www.virtualgraffiti.com/

Product - ESET Business Edition Products (Network AV with Management)
http://www.antivirusworks.com/
Call them for best prices...
__________________
ExtremeX
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump



All times are GMT -8. The time now is 3:41 PM.




Powered by vBulletin® Version 3.8.9
Copyright ©2000 - 2016, vBulletin Solutions, Inc.
Proudly hosted by GeoVario the Premier 2A host.
Calguns.net, the 'Calguns' name and all associated variants and logos are ® Trademark and © Copyright 2002-2016, Calguns.net an Incorporated Company All Rights Reserved.