About
Endpoint Prevent
and the AWS Elastic Load Balancer

Symantec Data Loss Prevention
Endpoint Prevent
on AWS Elastic Load Balancer (ELB) does not support SSL session affinity. SSL session affinity (also known as a "sticky session") is only for HTTP/HTTPS load balancer listeners. For more information, refer to the AWS document at: http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/US_StickySessions.html
"Instance" is the AWS term for virtual machine.
ELB is used to balance the Endpoint client connections to the Endpoint Server. When configuring a new ELB instance, follow the AWS instructions and use the following settings:
  • Configure the Endpoint clients to connect to the IP or the host name of ELB computer (not to the Endpoint Servers).
  • Listeners
    tab: Set
    Load Balancer Protocol
    to
    TCP
    and set
    Load Balancer Port
    to any port number (for example, 443).
  • Instance Protocol
    tab: Configure
    Instance Protocol
    to
    TCP
    .
  • Instance Port
    : For Linux Endpoint detection servers, the value of the TCP
    Instance Port
    cannot be under 1024.
  • Health Check
    tab: Set
    Ping Protocol
    to
    TCP
    and set
    Ping Port
    to the port that Endpoint client servers listen on.