 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
SQL Server Forum / Other Technologies / Clustering / September 2005SQL2000 Cluster and virus software
Microsoft’s SQL Server 2000 Failover Clustering doc states the following under miscellaneous configuration issues: “Disable or do not install antivirus software on your cluster” and then gives a link to that KB article. The KB article explains this as the reason why you might disable it: Most antivirus software uses filter drivers (device drivers) that work in conjunction with a service to scan for viruses. These filter drivers reside above the file system recognizer and scan files as they are opened and closed on a local hard disk. Antivirus software may not understand the shared disk model and may not properly allow for failover. The KB also says this: Warning This workaround may make your computer or your network more vulnerable to attack by malicious users or by malicious software such as viruses. We do not recommend this workaround but are providing this information so that you can implement this workaround at your own discretion. Use this workaround at your own risk. So does Microsoft recommend using virus software or not, they did both in the clustering doc / KB. Thanks! You should able to use antivirus software, just exclude the MSCS, MSDTC, and SQL data directories. Cheers, Rod MVP - Windows Server - Clustering http://www.nw-america.com - Clustering Website http://www.msmvps.com/clustering - Blog http://www.clusterhelp.com - Cluster Training > Microsoft’s SQL Server 2000 Failover Clustering doc states the following > under miscellaneous configuration issues: [quoted text clipped - 27 lines] > > Thanks! Microsoft also recommends that you analyze the threat of a particular installation. For most DBMS installations, the server should reside in a secured environment with no file shares. Properly locked down, the system would be at low risk for virus attacks. As a filter driver, there is a performance penalty by having what is known as Active Scanning running on the system. Although Microsoft does not come right out and say it, it does discourage AV on a dedicated and secured DBMS installation. We have worked with our server administrators in conjuction with the AV vendor to properly secure such installations and leave this sort of technology on more vunerable systems like file servers and communication components. INF: Consideration for a virus scanner on a computer that is running SQL Server 2000 http://support.microsoft.com/default.aspx?scid=kb;en-us;309422 Sincerely, Anthony Thomas You should able to use antivirus software, just exclude the MSCS, MSDTC, and SQL data directories. Cheers, Rod MVP - Windows Server - Clustering http://www.nw-america.com - Clustering Website http://www.msmvps.com/clustering - Blog http://www.clusterhelp.com - Cluster Training > Microsoft’s SQL Server 2000 Failover Clustering doc states the following > under miscellaneous configuration issues: [quoted text clipped - 27 lines] > > Thanks! I hear you, I really do, its just that some places are required to have AV on every machine. Cheers, Rod MVP - Windows Server - Clustering http://www.nw-america.com - Clustering Website http://www.msmvps.com/clustering - Blog http://www.clusterhelp.com - Cluster Training > Microsoft also recommends that you analyze the threat of a particular > installation. For most DBMS installations, the server should reside in a [quoted text clipped - 63 lines] >> >> Thanks! Then as the KB article explains, make sure you exclude the appropriate files and best of luck. But then again, having AV on every machine does not necessarily mean running all components. You could run the Virus Sweep routinely, excluding the appropriate files, but leave the Active Scanning filter driver off in situations like you describe. Sincerely, Anthony Thomas I hear you, I really do, its just that some places are required to have AV on every machine. Cheers, Rod MVP - Windows Server - Clustering http://www.nw-america.com - Clustering Website http://www.msmvps.com/clustering - Blog http://www.clusterhelp.com - Cluster Training > Microsoft also recommends that you analyze the threat of a particular > installation. For most DBMS installations, the server should reside in a [quoted text clipped - 50 lines] >> >> Thanks! The problem is where the AV driver interferes with the Cluster software, preventing the drives from coming online. Even if you exclude the drive from scanning, AV software can mess up the device driver. Most AV solutions don't do this anymore, but it was a real problem in the earlier days of clustering. Of course, on all SQL installations, you should exclude the data and log files/folders AND any backup locations, including remote file shares. I have had a very bad experience with AV scans on backup files.  SignatureGeoff N. Hiten Senior Database Administrator Microsoft SQL Server MVP > Then as the KB article explains, make sure you exclude the appropriate > files [quoted text clipped - 76 lines] >>> >>> Thanks! |
Reply to this Message |
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2009 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.