Hi,
Few more helpful links:
How to allow Symantec Endpoint Protection clients in a remote location to be managed by a Symantec Endpoint Protection Manager that's behind a NAT device
http://www.symantec.com/docs/TECH93033
Ports and Protocols to be allowed when using a proxy in a SEP environment.
http://www.symantec.com/docs/TECH131843
Which Communications Ports does Symantec Endpoint Protection use?
http://www.symantec.com/docs/TECH163787