Windows File Servers and SQL Servers: Which modules to include on installation package?
I am looking to replace Kaspersky. They made a separate product for File Servers which was simply called "Kaspersky for File Servers". I was pleased with the way that it ran and it produced a minimal footprint taking about 100mb RAM on average, not much CPU overhead that I could notice.
I am on a trial right now and trying out BEST/Gravity Zone. I created an installation package with all of the modules except the Firewall. I installed it on a test server. It is taking about 800MB ram according to task manager. CPU load I cannot test unless I do something with it, copy files or whatever, it is a test server. I didn't notice lag when I installed BEST on my workstation so it should be fine.,
Question is, which modules would be appropriate for a file server?
My main concern is ransomware on a network share. Should I just include Antimalware and leave the rest out? Will this use less memory and affect performance less?
Other choices are Advanced Threat Control, Advanced Anti-Exploit, Network Protection, Antiphishing, Web Traffic Scan.
Anybody use BEST on Windows Servers? TIA.
Comments
-
I have moved your post to Enterprise Security, and someone from the Enterprise team will get back to you.
Regards
Life happens, Coffee helps!
Show your Attitude, when you reach that Altitude!
Bitdefender Ultimate Security Plus (user)
0 -
Hello @Will_G ,
Each module that you have described has a different role and for the best protection it is highly recommended to have them all active.
- Advanced Threat Control (ATC) - Detects and mitigates advanced threats in real-time by monitoring the behavior of applications.
- Advanced Anti-Exploit - Protects against exploits that target vulnerabilities in applications and operating systems.
- Network Protection - Provides comprehensive protection against network-based threats.
- Antiphishing - Protects users from phishing attacks by identifying and blocking phishing websites.
- Web Traffic Scan - Scans web traffic to detect and block malicious content before it reaches the endpoint.
Now, regarding the Antimalware module, this represents the basic level of protection and has features such as Ransomware mitigation and Ransomware vaccine for ransomware protection but on the other hand there are multiple surfaces of attack so other modules are highly recommended.
In terms of resource consumption it varies depending on how the solution is fine-tunned. This fine tunning process is usually done through a Professional Services session which is included in the Premium license packages or as a paid service, on demand.
If you consider that one particular module is consuming more resources than expected you can open a case with Enterprise Support and they can look into it.
Contact details: https://www.bitdefender.com/support/contact-us.html?last_page=BusinessCategoryKind Regards,
Andrei1 -
I reconfigured the agent and removed (unchecked) everything except AntiMalware. RAM consumption went down by about 200MB according to the task manager on the endpoint.
However, when I run a "Endpoint Modules Status" report on the endpoint, it still shows all of the modules enabled. When I go to the endpoint itself, I bring up the client, it still shows all of the modules enabled in green.
When I click on tasks in gravityzone, it shows the task I ran to reconfigure the agent. Is there any way to see the results of the reconfigure agent task? All I get 'Finished (1/1), but can't see if the task was successful or not.
Edit: As far as having all of the modules enabled, remember, this is a file server. It is not used interactively, no browser use, no email, no nothing, just a server. I am more interested in real time protection on incoming files that are stored on the server by our users. My main concern is ransomware/viruses on out network shares over SMB.
Thanks
0 -
Hello @Will_G ,
Please collect a Support Tool Log and open a case with support as there are multiple reasons that can lead to this behavior such as communication problems, something at the endpoint level or even at the appliance level.
With this log the Enterprise Support Team can identify the root cause of your issue.
Support Tool Log:
Kind Regards,
Andrei
1 -
I haven't even bought it yet and I need a support ticket?
Not too encouraging, sorry.
And the RAM usage is high. Some people are saying, just buy more RAM. Really?
I've tried it on 2 different PCs and a server and their is no consistency or explanation.
Thanks anyway.
0 -
I suggested to reach out support as we need to review your configuration to say exactly why it is consuming that specific amount of RAM, without checking these details it's difficult to provide a tailored answer that would clarify your case.
Kind Regards,
Andrei
0
