Endpoint Protection Small Business Edition

 View Only

  • 1.  Network Threat Protection and Windows Firewall

    Posted Sep 12, 2010 11:56 AM

    We are deploying SEP Small Business v12 in our company.

    Can we use both NTP and Windows 7 Firewall on managed client workstations? NTP includes the intrusion prevention but in default the SEP firewall is off?  I want to leave SEP firewall off on clients and use Windows 7 firewall (with SEP NTP intrusion prevention) instead because managed client computer users (all IT professionals) must be able to open ports etc. and I understood that this is impossible with SEP managed client firewall?  So, is this kind of setup reasonable and working?

    Another question is that is it reasonable to use Network Thread Protection on server machines (Windows 2008 R2 64bit) if it slows down the network speed? So, if I leave whole NTP component uninstalled from SEP clients on servers and use only antivirus feature? On the servers there are also Windows firewalls enabled and servers are behind a real hardware firewalls.



  • 2.  RE: Network Threat Protection and Windows Firewall

    Posted Sep 13, 2010 07:21 AM

    Have a look at this KB.It is made for v11.Still you can have a look.it may or may not applicable to v12

    About Windows Firewall and Symantec Endpoint Protection's NTP

     

    Regarding NTP have a look at this KB

     

    .Best Practices for Installing Symantec Endpoint Protection on Windows Servers



  • 3.  RE: Network Threat Protection and Windows Firewall

    Posted Sep 13, 2010 08:27 AM

    Thank you for the links.

     

    I installed  managed clients with default settings (firewall policy off) and kept Windows Firewalls on. Endpoint client opened automatically needed ports from Windows firewall. 

    After boot in Windows Firewall control panel shows some kind of "warning" that SEP is controlling windows firewall etc.. Is this is ok, because the SEP firewall policy is totally off and Windows Firewall is controlling ports (and users can open ports too)? 



  • 4.  RE: Network Threat Protection and Windows Firewall

    Posted Sep 13, 2010 08:42 AM

    I think you done as per above above KB that should be ok.For testing ,create a rule in windows firewall and see whether it works.....



  • 5.  RE: Network Threat Protection and Windows Firewall

    Posted Sep 13, 2010 08:48 AM

    Hmm... Intersting, it shows that windows firewall is off but stil its is on in another screenshot? Here is screenshots of my situation. This won't matter because everything is workin as it should be...



  • 6.  RE: Network Threat Protection and Windows Firewall
    Best Answer

    Posted Sep 13, 2010 08:57 AM

    If everything is working as expected (windows firewall is able to control the traffic with the created rules for it) I think you can ignore these error messages....



  • 7.  RE: Network Threat Protection and Windows Firewall

    Posted Sep 13, 2010 10:37 AM

    Thank you very much for your comments. So I decided to leave firewall this way because everything is working really good and I can manage firewall ports with Win Firewall ("If it's working, don't touch it").