Endpoint Protection

Hi,

I need to know what firewall ports should be opened on my servers to have SEP defenitions update. I have Windows and Linux Servers

Thanks 

See here:

How to determine whether your firewall is blocking LiveUpdate

Make sure that the firewall allows the LiveUpdate executable to connect to the Internet through the correct ports and that the firewall allows connections to the correct domains. Read your firewall's documentation or contact the manufacturer to find out how to confirm these settings.

• LiveUpdate connects over TCP ports 80 (HTTP), 21 (FTP) and 443 (HTTPS).
• The file that connects to the Internet is LuComServer_*_*.exe in LiveUpdate 2.5 and later and Lucomserver.exe in LiveUpdate 2.0 and earlier.
  The default folder for this file is C:\Program Files\Symantec\LiveUpdate.
• LiveUpdate connects via HTTP to the domains symantec.com, liveupdate.symantecliveupdate.com, liveupdate.symantec.com ,and akamai.net.
  If a connection fails, LiveUpdate tries to connect to one of the other listed domains. The listed domains may change because of server maintenance.
  If LiveUpdate cannot make an HTTP connection, LiveUpdate connects via FTP to update.symantec.com/opt/content/onramp.

  ---

  Note: Symantec does not supply IP addresses for Symantec LiveUpdate servers. Because the servers are not static, routing directly to an IP address may cause LiveUpdate to fail.

Brian, i am looking for firewall ports need to be open on clients to get update from SEPMs

Thank you PraveenAyappan 

1- All client machines except servers have Symantec Firewall, so would Symantec Firewall, open those ports by default??

2- All client servers download updates from SEPM, so that means i just need to open port 8014 on those servers

please confirm

Just to add if you are looking for ports used by SEP clients for updates.

If updates are downloaded from SEPM its is defualt 8014 

If from GUP it is 2967

If from LUA it is 7070

and the clients uses the 80 (HTTP) & 21 FTP if it is downloaded directly from the symantec live update servers

Thank you

1- All machines except servers have Symantec Firewall, so would Symantec Firewall, do that by default

2- All servers download from SEPM, so that means i just need to open port 8014 on those servers

please confirm

1. SEP firewall will not block 8014. So you're set, no extra rule is needed.

2. No need. 8014 is already opened by default and cannot be blocked by the SEP firewall. It's hardcoded to be allowed.

No extra rules needed. you're good :)

1. 8014 is allowed by default. No further action needed by you.

2. 8014 is open already. No further action required by you.

What's the operating system where SEPM is installed? If Windows firewall is enabled on SEPM installed machine then need to open port 8014 in the Windows firewall to allow clients to receive updates.