Hi all
After scouring the forums I have not found the solution for this problem, A similar thread looks like the same issue however was created in 2009 and is now locked with no solution: https://www-secure.symantec.com/connect/forums/different-dhcp-problem
The setting "Block all traffic until the firewall starts and after the firewall stops" is causing issues on several clients on my network (rougly 5%). Clients are issues with APIPA address, as they were blocked from connecting to the DHCP server. Event viewer logs on client clearly show:
DHCP-client Event 1001:
Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address xxxxxxxxxx. The following error occurred: 0x79. Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.
If I disable this setting on the policy we no longer experience the problem however for obvious security reason I believe it is best to enable this where possible.
It is my understanding that the "Allow initial DHCP and NetBIOS traffic" should stop any DHCP issues using the SEP smart filter to allow DHCP requests, this clearly isnt working as intended. I have created a firewall rule to specifically allow the DHCP service which takes effect on both clients and DHCP server however this still hasnt resolved the problem becuase all traffic is still being blocked.
Any suggestions would be greatly appreciated.
Thanks