Video Screencast Help

Windows Firewall in Windows 7 managed by SEP12.1

Created: 15 Sep 2012 • Updated: 25 Oct 2012 | 10 comments
This issue has been solved. See solution.

Hi All,

I have logged the case with Symantec for above issue (plz refer attached snap), where they mentioned that this is obvious behaviour i.e either Symantec firewall or Windows firewall will be active at a time.
Do we have any possibility to enable access to both these firewalls.

Thanks & Regards,
Prasann
IT Security Engineer
CCNA,ITIL(2011)

Comments 10 CommentsJump to latest comment

Ashish-Sharma's picture
Symantec Endpoint Protection reports status to Windows Security Center in a format that is no longer supported
Fix ID: 2687476/2711787
Symptom: After installation of SEP 12.1 on Windows 7, Windows Security Center displays the following message:
Symantec Endpoint Protection is on but is reporting its status to Windows Security Center in a format which is no longer supported.
Solution: The SEP client was modified to properly register with Windows Security Center.

http://www.symantec.com/business/support/index?page=content&id=TECH187656

 After migrating to SEP 12.1 Windows Action Center reports "Turn on Symantec Endpoint Protection" even though SEP is ON

http://www.symantec.com/business/support/index?page=content&id=TECH165431

 

Edit####

Check this Mithun Comments It is always recommended to have only 1 software firewall on the Machine.

 

Mithun Sanghavi Symantec Employee

Hello,

It is always recommended to have only 1 software firewall on the Machine. 

It is best practice that only one software firewall should be run on a computer. Two firewalls that run on one computer at the same time can drain resources, and the firewalls might have rules that conflict with each other. Enabling more than one firewall program is likely to result in conflicts and poor performance. 

 

Check this:

About Windows Firewall and Symantec Endpoint Protection's NTP

 

 
Check this thread

 

Thanks In Advance

Ashish Sharma

 

 

pete_4u2002's picture

basically no two firewall should run on same machine. You enable only one firewall and confiure the rules

Mithun Sanghavi's picture

Hello,

What version of SEP 12.1 are you running?

Check these Articles:

Windows 7 Firewall indicate that "These Settings are being managed by vendor application Symantec Endpoint Protection", even when Symantec Endpoint Protection (SEP) 11.0 Network Threat Protection (NTP) is not installed.

https://www-secure.symantec.com/connect/articles/windows-7-firewall-indicate-these-settings-are-being-managed-vendor-application-symantec-en

Advanced Settings for Windows 7 Firewall indicate that it is on, even when Symantec Endpoint Protection (SEP) Network Threat Protection (NTP) is installed.

http://www.symantec.com/docs/TECH123729

 

The behavior of Windows 7 in regards to 3rd party firewalls (such as SEP) differs slightly than previous versions of Windows. In Windows 7, Microsoft changed Security Center to Action Center. In Action Center, a more universal interface was created for protection technology (Firewall, Antivirus, etc). Windows Firewall is indeed turned off when SEP NTP is enabled, indicated by the Installed Firewall list, as well as the General Firewall status section indicating that firewall rules are being managed by SEP. To verify the true Windows Firewall status: Open Action Center -> Expand "Security". Find line item "Network Firewall On". Below is a link "View installed firewall programs": Symantec Endpoint Protection is listed as installed and On, Windows firewall is listed as installed and Off."

Hope this clarifies this for you.

Mithun Sanghavi
Senior Consultant
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

Ashish-Sharma's picture

HI,

have you received your answer ?

Thanks In Advance

Ashish Sharma

 

 

SameerU's picture

Hi

Basically no two firewall should run on same machine.

Regards

 

John Santana's picture

Does SEP v12.1 automatically turn offthe Windows firewall once it is installed with NTP component ?

I'm not sure with the normal deployment without the NTP (Firewall component), would SEP still also allows WIndows firewall ?

Kind regards,

John Santana
IT Professional

--------------------------------------------------

Please be nice to me as I'm newbie in this forum.

pete_4u2002's picture

there is setting to disable windows firewall, this needs to be checked before exporting the client package.

To prevent this situation, SEP's installer automatically detects and disables Windows firewalls that are enabled. (The exception is, of course, if a custom install package is created which does not include NTP. If this Symantec firewall is not included in the install, an active Windows Firewall will not be disabled during install.)
 

John Santana's picture

Many thanks for the clarification Pete !

Kind regards,

John Santana
IT Professional

--------------------------------------------------

Please be nice to me as I'm newbie in this forum.

immumbaikar's picture

Greetings,

Many thanks to All for post valuable things out here.

Finally we have solution to above case, where it is possible to keep both firewall "ON" with minor change in setting on SEPM12.1 RU1 Manager.

Resolution/Workaround/Information provided:-

Changed the Windows Integration settings from Symantec Firewall Policy to Restore if disabled.

Thanks & Regards,
Prasann
ICICI BANK,Technical leader
CCNA, ITIL (2011)

Firewall Policy.JPG
SOLUTION
John Santana's picture

wow I just knew it that it is possible.

Thanks for sharing.

Kind regards,

John Santana
IT Professional

--------------------------------------------------

Please be nice to me as I'm newbie in this forum.