I am going to be implementing a new Server 2008 R2 domain structure running a Server 2008 R2 Remote Desktop Services server, Exchange 2010 Server and SQL 2008 Server all running in separate VM's on a Server 2008 R2 Hyper-V host and wanted some information regarding antivirus. I have a 55 user domain that all 55 users will log in via RDS. Currently we have a 2003 Domain running Terminal Services, Exchange 2003 and SQL 2005 running on their own physical boxes. The antivirus we use (ESET NOD32) is effective but runs a process for every user logged on and I have noticed that occasionally there are problems with the process that causes it to crash and sometimes crashing the primary ESET process and the server. I would like to move away from that type of situation.
We just recently implemented Postini Message Security service and I have been using OpenDNS content filtering along with a SonicWall TZ210 with the full Comprehensive Security Suite (Gateway AV, Spyware, Intrusion Prevention, Content Filtering) installed for some time. Keep in mind 48 of those users are accessing the server through VPN tunnels from remote offices and the TZ210 scans the VPN connections as well and the end users local pc's do have antivirus installed.
Those products/services seem to be doing a good job of blocking websites that are inappropriate and/or malicious and in blocking viruses, spam and malware before it actually hits my servers.
My question is has anyone had any experience using just firewall gateway and cloud based AV, Spam and content filtering and not installing any local AV on the server. The users have no way of physically accessing the server to use USB or the CD drive.
Any information and/or suggestions would be welcome.
Thanks in advance