I am using Symantec Sytem Center (SSC) ver 10.1.7.7000 on win2008 plateform with around 100 SAV clients getting auto definition update etc.. from SSC. most of the clients are win2003 servers. I am having challenges with one of my client, which is sitting behind the firewall, since all ports were locked down for this client, So I asked our firewall team to open port 2967 to push definition files…. and they opened traffic from SSC to client but its still not working ..from my past experience with some of existing clients I have behind the firewall with them they opened traffic both way (SSC-Client-SSC) to make it work and all those clients are getting definition update fine from SSC. But now they are asking me to give them a valid reason why they need to open both way traffic ? Does anyone know the valid reason to open the firewall ports both way from SSC to Client and otherway Client to SSC. Would be great if some one can send me a Document I could refer it to them or atleast some explanation why we need to open both way traffic - Thanks in advance.