sunhux
asked on
what's inline AV scan & its advantages : pls suggest a couple of products
https://www.experts-exchange.com/questions/22086234/Which-Enterprise-Anti-Virus-Solution.html
"Also agree with AVG but you should use a layered approach we put all the servers behind a firewall with
AV and IDS and 2 inline AV network boxes (Pandagate and network virus wall) ... "
Q1:
What's inline Antivirus scan mentioned above? So it does not sit inside the endpoint
but just filtering the traffic for malware?
Q2:
In what way it's different & better (or worse) that AV solutions that sit inside the server
(in our case, it's VMs in a virtual cluster). Inline scan is less disruptive to applications?
Chews no resource in the endpoints?
Q3:
Kindly suggest a few products that offer this inline scanning
"Also agree with AVG but you should use a layered approach we put all the servers behind a firewall with
AV and IDS and 2 inline AV network boxes (Pandagate and network virus wall) ... "
Q1:
What's inline Antivirus scan mentioned above? So it does not sit inside the endpoint
but just filtering the traffic for malware?
Q2:
In what way it's different & better (or worse) that AV solutions that sit inside the server
(in our case, it's VMs in a virtual cluster). Inline scan is less disruptive to applications?
Chews no resource in the endpoints?
Q3:
Kindly suggest a few products that offer this inline scanning
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
If "inline" AV scan is in place, is file-level AV scanning still needed (ie does
"inline" scan renders traditional file level AV scan obsolete?)
I think in layered security, it's still good to have file-level AV scan on top
of inline scan unless performance of the servers/endpoint is so badly
affected, then only get exemption from file-level scan?
"inline" scan renders traditional file level AV scan obsolete?)
I think in layered security, it's still good to have file-level AV scan on top
of inline scan unless performance of the servers/endpoint is so badly
affected, then only get exemption from file-level scan?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
By "installed", does it reside inside the PC or server OS?
> on SERVERS "inline"
is the above sitting inside the servers' OS as well?
In Cloud/virtual environment, an agentless AV would sit inside the hypervisor/ESXi
layer, is this considered inline?
Our Checkpoint vendor told me their blade product which acts as firewall plus IPS
could also do AV scanning : so is this inline AV scanning?