Solved

the Good Antiviurs now a day

Posted on 2009-05-12
2
274 Views
Last Modified: 2013-12-04
Hi everybody,

I'm not expet in the security but I need to know about it.

first of all: I need to get some scinetific or expert comparisons between the enterprize antivirueses (not business comparisons). and I need to know your recommedations for the best solution nowadays.

second: I need to know if I should fix a standalone server for the antivirus or not, and I have to make a domin or not?

third: I need to know if this kind of solutinos is suffecient; mean: do I have to install any other solutions (as firewal, malware, antyspyware, etc...).

forth: what's the differnt between the hardware Firewall and the software firewall?

fifth: how the router and swiches effect the security in my network and what's you recommendations.

I know it's a lot but I will thank every body give me any prpoer information about any point.

best regards

0
Comment
Question by:Ahmed82
2 Comments
 
LVL 1

Accepted Solution

by:
bruceb2 earned 500 total points
Comment Utility
Wow, you have some loaded questions.

1.  When it comes to Enterprise AV here are the questions to have answered when evaluating.
          Do they provide a fully working demo that you can test in a lab?
          How often do they release definitions? Weekly, Bi-Weekly
          How often do they release application updates?
     I have worked for companies that have used Norton, McAfee, Trend, and a few others and they all pretty much do the same thing but in different methodologies.  Some kill the virus (Norton), some quarantine it (McAfee) before killing it, Some just tell you it is there and leave it up to you to remove (Trend).  Narrow down the ones that fit your needs and test in a lab setting not on production network.  Put a sniffer on that pipe and watch the traffic.  Some AV programs create a ton of traffic.  One suggestion on test enviroment.  Make one machine with every app you have on it and monitor performance.  I currently run McAfee and my AutoCAD design machines don't like it.

2. Needing a stand-alone server will depend on two factors.  Is it a centralized AV program or De-centralized.  And how much power the AV needs to run.  I have 2 Definition mirrors setup on my network to eliminate traffic but there is no server component to it.  I recommend domains from a sheer security stand point.  Active Directory gives you a ton of tools to use for security and organization.

3.  It never hurts to have those programs in place.  I tend not to install them on every machine due to performance and cost.  I leave the spyware and malware tools in my techs hands to use on an as needed basis.  I do have Windows Defender installed on all machines and the firewall enabled.  SPAM is handled at the gateway level.

4.  A hardware Firewall is like a Cisco PIX or Cisco ASA appliance.  It is a physical device that sits at the parimeter of your network.  A software firewall is an app that can operate like the physical firewall but on a server or can be installed on every device.  I do both.

5.  My suggestion is to crack open the vendor manuals and lock them down.  If they get through your router and your firewall your switches are your next line of defense.  VLANs are a good place to start and it may improve your network performance.

Hope this helps.
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

In today's information driven age, entrepreneurs have so many great tools and options at their disposal to help turn good ideas into a thriving business. With cloud-based online services, such as Amazon's Web Services (AWS) or Microsoft's Azure, bus…
OfficeMate Freezes on login or does not load after login credentials are input.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now