locked
Using Forefront CS across domains, or in a hosted environment RRS feed

  • Question

  • I have a question about deploying Client Security in our environment.  We have off site customers that we provide anti-virus to, currently using Trend.  They reach back to our anti-virus server over a WAN link in some cases, but in some cases straight over the internet.  Is there a feature in Client security to have client machines connect back to the distribution/reporting servers over the internet or over a WAN connection using http: or https:? 

    Thanks!

    • Moved by Miles Zhang Thursday, October 28, 2010 3:18 AM (From:Forefront Client Security Setup and Configuration)
    Friday, October 1, 2010 4:45 PM

Answers

  • Hi,

    Thanks for the post.

    Before deploying Client Security to your client computers, it is highly recommended that you uninstall or disable other antivirus or antispyware protection on those computers.

    The following table lists the network ports and protocols that are used for communications between Client Security servers and client computers.

    Computer Connection Port (protocols)

    Client computers

    To collection server

    1270 (TCP and UDP)

    Client computers

    To distribution server

    80 (TCP) or 8530 (TCP) or custom

    You could access the following link:

    http://technet.microsoft.com/en-us/library/dd185652.aspx

    In addition, AFAIK, there is no this kind of feature in FCS to have client machines connect back to the distribution/reporting servers over the internet or over a WAN connection using http: or https

    Thanks,

    Miles

     


    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
    • Marked as answer by Miles Zhang Tuesday, October 26, 2010 6:46 AM
    Monday, October 4, 2010 8:30 AM

All replies

  • Hi,

    Thanks for the post.

    Before deploying Client Security to your client computers, it is highly recommended that you uninstall or disable other antivirus or antispyware protection on those computers.

    The following table lists the network ports and protocols that are used for communications between Client Security servers and client computers.

    Computer Connection Port (protocols)

    Client computers

    To collection server

    1270 (TCP and UDP)

    Client computers

    To distribution server

    80 (TCP) or 8530 (TCP) or custom

    You could access the following link:

    http://technet.microsoft.com/en-us/library/dd185652.aspx

    In addition, AFAIK, there is no this kind of feature in FCS to have client machines connect back to the distribution/reporting servers over the internet or over a WAN connection using http: or https

    Thanks,

    Miles

     


    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
    • Marked as answer by Miles Zhang Tuesday, October 26, 2010 6:46 AM
    Monday, October 4, 2010 8:30 AM
  • Can you please tell me if Client Security can be deployed to machines that are not in a domain, or that are not in a domain and in a DMZ?  We have a datacenter with customer's computers that we manage to varying degrees.  We need to be able to rollout protection to all machines in different VLAN's.  Some on our domain, and some not on our domain.  I know I can install the client via registry keys, but will I get full functionality if a client is not in the domain?

     

    Thank!

    Wednesday, October 6, 2010 6:40 PM