Hello all,
Does anyone have experience getting on-close ICAP AV scanning to work using "McAfee VirusScan Enterprise for Storage"? We're having trouble with TCP buffer overruns on our scan servers and the Isilon handles it poorly (it produces IO errors for our end users).
We did packet captures while running a constant low-throughput test scan. Even at <1MB/s to a dedicated 2.3GhZ quad-core, 6G RAM, 10G link scan server, TCP Zerowindow errors. MTUs match and I've tried increasing the Rx buffers to no avail. The server stats show that its resources are barely being touched while scanning. This happens on both hardware and VM environments running Windows Server 2012. The Isilons used in testing were running 7.1.1.2 and 7.1.1.4.
Is there a way to get the Isilon to throttle its scans as the Rx buffer fills? Any idea on why the scan server's Rx buffer is filling in the first place?
Thanks,
PJ