They wouldn't, but, your GUP policy still needs to be corrected.
Enable sylink debugging on the client:
How to enable Sylink debugging for Endpoint Protection clients
Let it run thru a few update attempts and review the log for issues.
Really, you should only need to update from teh GUP or SEPM when on network and from Symantec LU when off network.
Is there a reason you're using a LUA?