sunhux
asked on
Impact of restricting RAM usage of a process in Win 2008 R2 & Win2012 & how to test/verify for adverse impact
We have some AV process in Windows 2008 R2/Win2012 which could chew up to 320MB of RAM &
the principal told us this is expected/normal esp when Realtime (ie On-Access) scan is enabled & it
includes folders containing many files, or files with high compressions.
On rare occasions, we'll see hard page fault of around 5-15.
Our tenants are not happy with this reply & wanted folders that contain huge number of files as
well as folders with compressed files to be excluded from the Realtime scan.
http://blogs.technet.com/b/mrsnrub/archive/2009/12/08/windows-system-resource-manager-wsrm-does-exactly-what-it-says-on-the-tin.aspx
Excluding those folder from realtime scan means there's a risk those folders are infected & no
realtime protection. Would implementing the above measure of restricting RAM has any impact
on the realtime scan's performance such as slower performance of the AV.
How can we test
the principal told us this is expected/normal esp when Realtime (ie On-Access) scan is enabled & it
includes folders containing many files, or files with high compressions.
On rare occasions, we'll see hard page fault of around 5-15.
Our tenants are not happy with this reply & wanted folders that contain huge number of files as
well as folders with compressed files to be excluded from the Realtime scan.
http://blogs.technet.com/b/mrsnrub/archive/2009/12/08/windows-system-resource-manager-wsrm-does-exactly-what-it-says-on-the-tin.aspx
Excluding those folder from realtime scan means there's a risk those folders are infected & no
realtime protection. Would implementing the above measure of restricting RAM has any impact
on the realtime scan's performance such as slower performance of the AV.
How can we test
Last Comment
SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Those VMs are Win2008 R2 and Win2012 servers with RAM ranging
from 2GB to 16GB. To some of the tenants, taking up 320MB is a
considerable amount
from 2GB to 16GB. To some of the tenants, taking up 320MB is a
considerable amount
ASKER
Still need an impact assessmt of restricting the RAM on coreshellservice & do we test/verify its impact?
http://blogs.technet.com/b/mrsnrub/archive/2009/12/08/windows-system-resource-manager-wsrm-does-exactly-what-it-says-on-the-tin.aspx
http://blogs.technet.com/b/mrsnrub/archive/2009/12/08/windows-system-resource-manager-wsrm-does-exactly-what-it-says-on-the-tin.aspx
SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
I can't use Windows Defender as it's not endorsed by our corporate.
Thing is I have not seen if Win Defender will truly use much less RAM.
How to verify the eficiency is reduced with RAM restriction?
Thing is I have not seen if Win Defender will truly use much less RAM.
How to verify the eficiency is reduced with RAM restriction?
this can only be done by testing the application in a lab environment
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Windows OS
This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.
129K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
ASKER
tenants' VMs that are hosted in our Cloud.
It's Deep Security CoreShellService process that I'm referring to