Hi
Internal intranet websites, Browsing fine, But as soon as we attempt to access websites external to org,
Get SEP11 blocking traffic with this message: traffic blocked from ntoskrnl.exe
Unsure of whats going on
Ntoskrnl.exe--is the file used for file and print sharing..
So all the computers in the network poll on the UDP port 137 ,138 to find computers near them. So even if you are not using the remote computer for file sharing you might get this pop-up. Since on Unmanaged computer the option for Browse File and Print sharing on the Network in unchecked ( turned off ) So you might be getting this pop-up. So what you can do is Open SEP Interface-Under Network Threat Protection -Options-Change Settings-Microsoft Windows Networking-All network Adapters--Check both the boxes below then one by select all the adapters and make sure both the boxes are checked for all you Network adapters in the drop-down..
Checked this forums.
https://www-secure.symantec.com/connect/forums/symantec-endpoint-protection-110420275-blocked-traffic-ntoskrnlexehelp
https://www-secure.symantec.com/connect/forums/nt-kernel-amp-system-ntoskrnlexe-blocking-message-repeatedly-appearing
Hi,
Un-check Display Intrusion Prevention Notifications and check whether that file is using any infected process.
Thanks
Hi lbigfella,
Kindly find attach forums and try .
https://www-secure.symantec.com/connect/forums/traffic-has-been-blocked-application-ntoskrnl-exe-sep11