Video Screencast Help

Unmanaged in the DMZ

Created: 15 Feb 2010 • Updated: 24 May 2010 | 6 comments
This issue has been solved. See solution.

Hello Team,
If I have a server in the DMZ running Unmanaged,
do I still need to open port 8014?

What port does live update in this case require?

Thanks! 

Discussion Filed Under:

Comments 6 CommentsJump to latest comment

AravindKM's picture

8014 is the port for communicating with SEPM so it is not applicable in case of unmanaged.
Refer this doc you will get the idea
How to determine whether your firewall is blocking LiveUpdate 

Please don't forget to mark your thread solved with whatever answer helped you : ) Thanks & Regards Aravind

SOLUTION
Grant_Hall's picture

 When configuring a firewall operating between the SEP client in DMZ and SEPM in local LAN it is necessary to allow on the firewall only one of the two ports: HTTP 8014/80 or HTTPS 443, which is answering the security standards and it is limiting open ports to necessary minimum. Limited number of open ports is allowing the firewall Administrator to monitor the communication and create appropriate rules on the application level granting only to SEP processes the rights to use dedicated open ports.

Cheers
Grant

Please don't forget to mark your thread solved with whatever answer helped you : )

AravindKM's picture

He is telling about unmanaged client ."DMZ running Unmanaged," 

Please don't forget to mark your thread solved with whatever answer helped you : ) Thanks & Regards Aravind

pete_4u2002's picture

hi,

yes, sorry for reading it otherwise.

pete_4u2002's picture

apart from the above suggestions, yopu may need to check if replication is there to be enabled in your network, you may need to open port 8443 as well.

 

http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007090614430148