Hi,
We are looking into replacing our current antivirus solution with Symantec Endpoint protection, but have yet to test if it is suitable for our needs.
Scenario
- Clients are located remote and have no direct access to endpoint protection management server (no vpn). They can only connect to a public IP across internet which the management server is located behind.
- Endpoint protection manager have no direct access to clients (no vpn)
- Clients are 'Windows Workgroup' - no domain
Our question is if it is possible to:
- Administrate the clients centrally from the management server
- Set the clients to always download updates direct from Symantec, but pull policies, exceptions etc. from the management server
- Set the clients to report to the management server
- Have the clients connect to the management server (public IP) at a specified interval to download policies etc.
If this is possible, then which ports do we have to open/forward in the firewall in front of the Endpoint Manager?
How do we "instruct" the clients to connect to the Endpoint Manager's public IP?
Thanks in advance
Jensen