Endpoint Protection

Hello,

 

We have a VPN server that is using SEP. We also have a server on a remote location that is connecting to this VPN with the goal of replicating data using DFS.

 

Unfortunately the firewall is blocking this VPN connection and the replication comes to a halt.

 

I realize this issue + a solution has been posted a lot, but it's usually just a copy paste that says you have to allow your VPN network adapter in the Firewall rules that use Allow (or something like that).

 

This is my second day using SEP and SEPM, I don't really have any experience on how to edit these rules (I know how to get to them in SEPM, though). I would really appreciate a little more detailed information, if that's possible.

 

Thanks!

You checked your traffic log and know what you have to allow, correct?

See if this article helps out:

Adding a new firewall rule

Once you fire up the firewall wizard, it should walk you thru it step by step.

Hi there,

 

Yeah I checked the log.. There's a lot of incoming UDP connections being blocked. Is this normal, and should I just allow them for the VPN server?

 

I did try turning off the "block all incoming connections and log" and "block all incoming connections and don't log" rules in the firewall policies but it still blocks the VPN.

 

Is it possible (And responsible) for me to allow all remote ports from local port 53? It would make the process go a lot faster.

Well ideally you don't want to open everything up but if you need get things working quickly you can until you do an in depth review of the traffic log. You can allow all traffic from the VPN server only.

Thanks for your (fast) response. That's what we'll do for now!

Happy to help :) Check back if you need anything.