Endpoint Protection Small Business Edition

 View Only

  • 1.  SEP with NAT? is this possible?

    Posted May 09, 2013 10:47 PM

    Hey Guys,

    Is this possible? we have network limitation which was designed because of security reasons, basically we were thinking is this:

    Normally this is how it works:

     

    SEP Client-->SEPM (both on the same range of IP)

     

    Is this one possible?

    SEP Client-->Router with NAT(10.15.12.3)-->SEPM()

     

    So basically that SEP client will talk to the NAT and the Nat will talk to the SEPM.

     

    Thanks,



  • 2.  RE: SEP with NAT? is this possible?

    Broadcom Employee
    Posted May 09, 2013 10:54 PM

    yes, check this link

    http://www.symantec.com/docs/TECH93033



  • 3.  RE: SEP with NAT? is this possible?

    Posted May 09, 2013 11:36 PM

    yes it's possible

    How to allow Symantec Endpoint Protection clients in a remote location to be managed by a Symantec Endpoint Protection Manager that's behind a NAT device

    Article:TECH93033  |  Created: 2009-01-23  |  Updated: 2009-01-24  |  Article URL http://www.symantec.com/docs/TECH93033

    https://www-secure.symantec.com/connect/forums/how-can-communicate-my-clients-sepm-nat



  • 4.  RE: SEP with NAT? is this possible?

    Posted May 10, 2013 12:10 AM

    Check the below one

    http://service1.symantec.com/support/ent-security.nsf/docid/2009032408115648

    https://www-secure.symantec.com/connect/forums/can-sepm-be-accessed-public-network



  • 5.  RE: SEP with NAT? is this possible?

    Trusted Advisor
    Posted May 10, 2013 11:11 AM

    Hello,

    Yes, that is possible.

    Check the following Article:

    How to allow Symantec Endpoint Protection clients in a remote location to be managed by a Symantec Endpoint Protection Manager that's behind a NAT device

    http://www.symantec.com/docs/TECH93033

    Hope that helps!!

     



  • 6.  RE: SEP with NAT? is this possible?
    Best Answer

    Broadcom Employee
    Posted May 15, 2013 10:31 AM

    Hi,

    Establishing a site-to-site VPN tunnel is the best option. It allows the SEP clients to be managed like any other clients on the internal network. However, site-to-site VPN tunnel may not always be possible and sometimes, the risk of passing SEP traffic through external network may be acceptable. This document explains how to achieve this without a site-to-site VPN tunnel.

    How to allow Symantec Endpoint Protection clients in a remote location to be managed by a Symantec Endpoint Protection Manager that's behind a NAT device

    http://www.symantec.com/docs/TECH93033

    Best Practices: Configuring a Symantec Endpoint Protection environment in a DMZ

    http://www.symantec.com/docs/TECH178325

    Security recommendations regarding SEP client installed on server located in DMZ

    http://www.symantec.com/docs/TECH122858

    Best Practices: Configuring a Symantec Endpoint Protection environment in a DMZ

    http://www.symantec.com/business/support/index?page=content&id=TECH178325

     



  • 7.  RE: SEP with NAT? is this possible?

    Posted May 27, 2013 12:38 AM
    Grt article Chetan, Cheer...!!!!