How good are Appliance based Antivirus/AntiSpam solutions ?

Posted on 2011-10-18
Last Modified: 2013-11-22

we are small business company with 45 computers.
we have been using Symantec Antivirus all these years on workstations & Servers.
we have microsoft exchange email server- so we use the symantec mail security for MS exchange as well.

We wanted to migrate to a newer or better solution.

1) Wanted to check with the experts here as how good are the Appliance Based Antivirus Solutions ?

2) I know that appliance based AV's will not replace the workstations AV scanning. we would still need AV on workstations & Servers.  But when we go with any appliance based AV solution at the gateway level, how much of AV maintenance on workstations/server would cut down ?

3) Any inputs from the current appliance AV users ?
Question by:OCUBE
    LVL 38

    Accepted Solution

    The only "Appliance" I ever used was in the form of hardware firewalls set at the perimeter monitoring traffic through our foundry switch. If you have any examples, we could do a better job commenting.

    I always recommend a hardware firewall to all users - even home networks - and for a company your size a server-based enterprise AV applications.

    I have had great luck with MSE on home & small networks (up to 10 systems) and think you would do well to evaluate the Microsoft Forefront Endpoint application:

    Malwarebytes will soon have an enterprise version and the two products work very well together.

    I am not a fan of any of the AV solutions that attempt to provide a 'suite' of applications - too many things trying to happen at the same time and none (IMO) performing very well.

    An EE Article on basic systems protection is here:
    MALWARE - "An Ounce of Prevention..."

    Author Comment


     How does Barracuda Spam & Virus firewall work ?
    LVL 38

    Expert Comment

    I have seen several of our top Experts recommend it, but not personally used it.
    We happen to have one of the top networking experts on the planet posting here at EE and I'll ask him to take a look at this question.

    He's based in the UK, so not sure if he is still on-line.

    Author Comment


    Thanks for the help
    LVL 51

    Assisted Solution

    by:Keith Alabaster
    Need to change the perspective of the question a little. In your original question you state you want a newer or better solution - it would help to understand what is wrong (in your view) with your existing system? What doesn't it do that you want it to? What does it do that you DONT want it to? That said, I would want to get rid of Symantec also as I have never found the product to be reliable.

    Appliance based AV systems are no different to software based software or even externally-hosted 3rd-party solutions in respect to functionality and - in my view - it does not cut down any maintenance at all. What it DOES do is provide another layer of protection, defence in depth if you like. What an appliance (as close to the edge as possible) can you give you is that first line of defence for most types of traffic - SMTP filtering for attachments etc, a proxy filter for known payloads contained in web sites and most have antispam protection as well.

    I will not comment on Juniper as I have never used their products although I have not heard anything disparaging about their offerings.

    I agree with YoungV about the suites although an exception to the rule is Sophos. The Sophos suite is not the cheapest but is superb. You also get the benefit that the license also allows your users to install the software on their home computers. Whilst this sounds like a sales gimmick, in truth it means that your home users are protected (and clean) prior to any of them making a VPN connection onto your network and introducing a virus through the back door as often VPN's bypass the edge protection sysyems. Further, if you have laptop users who take their equipment out of the office an appliance serves no purpose so as you comment yourself the need for protection at all levels remain and therefore the maintenance does not reduce. Their central management console and reporting tools/alerting tools are also excellent.

    Microsoft's Forefront endpoint security suite is indeed extremely good but I don't normally recommend it unless the client site also has System Manager or similar to control the clients through a dashboard.

    You have made no mention about centralised deployment, updating or monitoring - are these required? In addition, you have not mentioned your budget - the products I mention are not the cheapest but all round, they are likely the best.


    Author Closing Comment

    Didn't got the exact solutions what I am looking for but got some good info to look forward for a solution.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    PREFACE The purpose of this guide is to provide information to successfully install the MS SQL client tools for the Symantec Endpoint Protection Manager (SEPM) to function properly when installed on Windows 2008. AUDIENCE Information Technology…
    I recently had to create a utility which aim is to update McAfee's Virusscan and that had to be launched from a command line. I thought I’d share my experience with you. Why is it useful to be able to update an Antivirus from the command line?…
    Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
    In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor ( If you're interested in additional methods for monitoring bandwidt…

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    11 Experts available now in Live!

    Get 1:1 Help Now