Ensure redundancy with relay groups

Deep Security Relays are part of the network that distributes Security and Software Updates from Trend Micro to your protected resources. You must have at least one functioning Deep Security Relay if you want keep your protection up to date. Relay functionality is included in all 64-bit Windows and Linux Deep Security 9.5 or later Agents.

Each Relay belongs to a Relay Group (even if it is just a group with a single member). Agents/Appliances are assigned to Relay Groups not individual Relays. This provides some redundancy in case a single Relay within a group goes offline. There is a group called "Default Relay Group" to which all new Relays are assigned by default. You can have multiple Relay Groups, and the Relays Groups can be arranged in a hierarchy so a single top level Group gets its updates from the Trend Micro Update Server and then passes them down through a hierarchy of sub-Groups.

A Relay can obtain security updates from another Relay Group, but not from another Relay (even if they are both part of the same Relay Group). A Relay must obtain updates from another Relay Group further up the hierarchy or another configured security update source. For more information on configuring security updates, see Ensure your computers have the latest threat information.

For information on enabling relay functionality in an Agent, see About relay-enabled agents.

From the Relay Groups page, you can:

  • Create a New () Relay Group
  • Delete a Relay Group
  • View the Properties() of a Relay Group

Relay Group Properties


General Information: The name and description of the Relay Group.

Security Updates: Select the source from which this Relay Group will download and distribute software security updates. The Default Relay Group will always use the primary update source defined in the Administration > Updates > Relay Groups. However, any additional Relays Groups you create can use either the primary update source or another one that you have configured.

Proxies: Specify the proxy server that must be used to access the Primary Security Update Source. The Primary Security Update Source is usually Trend Micro Update Server, and is configured on the Administration > System Settings > Updates tab. The proxy will be used by the Relays in this Group if this Relay Group is configured to use the Primary Security Update Source. If this Relay Group is configured to get its Security Updates from another Relay Group, the proxy will only be used if connectivity with the other Relay Group is lost and this Group from must fall back to the Primary Security Update Source.

Members: Relays that are members of the group

Assigned To

The Assigned To tab shows the computers that are using this Relay as the source of the Security and Software Updates.