Video Screencast Help

Open Port

Created: 19 Jul 2009 • Updated: 21 May 2010 | 7 comments

Hi,

I would like to open a port on Symantec Endpoint, so that an app can run/connect to the web.  How would I go about this; can't find anything online.

Also, Symantec EVERY five seconds(even when offline) reminds me it's blocking NT Kernel(something like that), do I need that connecting?

Any help would be appreciated...

Comments 7 CommentsJump to latest comment

ralphyj's picture

it's actually Nt Kernel & System(ntosknrl.exe)

Beppe's picture

Hi,

are you talking about a managed or self-managed SEP client? If managed, do you want to create a rule for a group of clients, or just a local firewall rule for one or few clients?

Rregards,

Regards,

Giuseppe

Beppe's picture

Regarding your sentence "I can't find anything online", you can also search offline in CD1\documentation\administration_guide.pdf, it is worth.

Regards,

Regards,

Giuseppe

smoinatton's picture

Hi,

To create a Firewall Policies on Unmanaged Clients, read * Section 5 - Configuring Network Threat Protection - page 429 in the Administrator Guide (administrator_guide.pdf in the documentation directory of the SEP 11 installation CD)

1. Double click on the Symantec shield icon on the taskbar. You can also access the client interface from the Start Menu: Start > All Programs > Symantec Endpoint Protection.
2. Click on the Options button next to Network Threat Protection.
3. Select 'Configure Firewall Rules'.

By default there are five rules. You can add your own customized rules via the 'Add Rule' button. Unlike managed clients, there is no rule creation wizard. Instead, a pop-up appears and allows you to configure a blank rule.

To add a new Rule:

There are five tabs in the New Rule menu.

* General
* Hosts
* Ports and Protocols
* Applications
* Scheduling

* Section 5 - Configuring Network Threat Protection - page 429 in the Administrator Guide (administrator_guide.pdf in the documentation directory of the SEP 11 installation CD)

And to create a FW rule for a managed client, read this document online:

Symantec Endpoint Protection 11.0 Network Threat Protection (Firewall) Overview and Best Practices White Paper
http://service1.symantec.com/support/ent-security.nsf/854fa02b4f5013678825731a007d06af/d29b17f62f36c49f882573b400333bd4?OpenDocument

Symantec Endpoint Protection Manager - Firewall - Policies explained
http://service1.symantec.com/support/ent-security.nsf/854fa02b4f5013678825731a007d06af/c5caff048f5ee32c80257412003ca7b2?OpenDocument

Default Network Threat Protection Rules for Symantec Endpoint Protection
http://service1.symantec.com/support/ent-security.nsf/854fa02b4f5013678825731a007d06af/8410d1beca16bd6588257539005b8695?OpenDocument

Now, You can

ralphyj's picture

uh, it's pre-installed, It's mandatory to have a computer from my school. so I don't have the CD.

ralphyj's picture

thanks smoinatton, I figured it out...

Vikram Kumar-SAV to SEP's picture

Well you can unblock ntoskrnl.exe..If your issue is completely resolved can you also write the steps you took to resolve your issue so that it will help other to resolve the same issue that you faced...

Vikram Kumar

Symantec Consultant

The most helpful part of entire Symantec connect is the Search button..do use it.