I havent read the whole thread of emails on this but we are running about 70+ VDI desktops. We run Kaspersky for AV. It is installed on every VDI desktop. The one pointer I can give you from experience is to make sure any of the tasks are staggered across the different pools you have. We were bringing our NetApp SAN to a crawl when we had the updates firing off whenever an update was available, same with scans. We now have them spread out and the performance is great.
From: N Parr [mailto:npar...@mortonind.com] Sent: Thursday, July 01, 2010 11:06 AM To: NT System Admin Issues Subject: VMWare View, How are you handling AV? (Viper to be specific) So does anyone have any pointers on this? Are you just not worrying about it since you can wipe the linked clones out at any time if they get infected? I'm sill worried about handling outbreak protection. Don't care if the clone gets hosed but I don't want all my clones getting infected with something and trying to spread it around. If you install AV on the base image and don't use persistent clones then they will have to update signatures every time they boot from the day the base image was created. If you use persistent clones then their deltas will grow because of signatures being added every day. And then you've got licensing and agents on linked clones trying to update from the enterprise server with a pc name that is different than the base image they were created from. I don't think a lot of AV vendors have really thought this type of situation through. ... -- Sherry Abercrombie "Any sufficiently advanced technology is indistinguishable from magic." Arthur C. Clarke ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
