Endpoint Protection

Hi Team,

We have several DMZ Servers that needs to be managed by SEPM...
What ports might need to be openned so that this task could be completed.

Please direct me to a link for an official Symantec KB or white paper for this SIrs...
Badly need your advice team...

many thanks..

Hi Nel,

You can open port 8014 (if you installed it with default settings) for general communication. It's found on page 50 of the Installation guide.
We did that with one of our firewalled environments and it works like a dream...

Regards,

Chris 

p.s Here is the guide to port numbers: http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007090614430148

Nice one Chris...
Do you have a link on the ports for DMZ?
Maybe Symantec has a KB on this?
Thanks for the big help...

Was this one:
http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2008091215040048

It basically runs through a troubleshooting guide - of interest is the Telnet to port 8014 on the SEPM server - if you cannot telnet to this port (again, it's based on the defaults), then the firewall may not have the port opened.

In our particular scenario, we opened port 8014 for all Servers inward/outward bound to the SEPM server IP address on port 8014.

Hope that helps :)

Regards,

Chris

Hi Nel Chris already provided the KB on his post below his name. The SEP clients need ports 8014, 443 type TCP. And if you are planning to place a GUP on the DMZ you may want to open port 2967 TCP.

There no document spcific to DMZ you may need to follow the document provided by Chris.

Just ot update !
 
All the communications between the manager & the client happens over http on the port defined in the IIS "default port is 8014"
If you open this port it should work with the communications part atlest.

thanks all...
Chris ... you are the man...
Giving solution to you...
thanks...

Thank's to all Admins, who give these Usefull Information to us. It was, one of the best case with the Solution that Solved, Very Fast ! .

Best Regards, Nourbakhsh