12.0
Table Of Contents
- Implementation Guide for Symantec™ Endpoint Protection Small Business Edition
- Technical Support
- Contents
- 1. Introducing Symantec Endpoint Protection Small Business Edition
- About Symantec Endpoint Protection Small Business Edition
- About the types of protection
- Single console management
- How you are protected out-of-the-box
- Key features of Symantec Endpoint Protection Small Business Edition
- Components of Symantec Endpoint Protection Small Business Edition
- Where to get more information about Symantec Endpoint Protection Small Business Edition
- 2. Planning the installation
- 3. Installing Symantec Protection Center
- 4. Preparing for client installation
- 5. Installing the Symantec Endpoint Protection Small Business Edition client
- 6. Migrating to Symantec Endpoint Protection Small Business Edition
- 7. Starting the Symantec Protection Center console
- 8. Monitoring endpoint protection
- About monitoring endpoint protection
- Viewing the Daily Status Report
- Viewing the Weekly Status Report
- Viewing system protection
- Viewing virus and risk activity
- Viewing client inventory
- Finding unscanned computers
- Finding offline computers
- Viewing risks
- Viewing attack targets and sources
- About events and event logs
- 9. Managing security policies and computer groups
- 10. Managing content updates from LiveUpdate
- 11. Managing notifications
- 12. Managing product licenses
- 13. Managing protection scans
- About managing protection scans
- How protection scans work
- About the default protection scan settings
- Enabling File System Auto-Protect
- Scheduling an administrator-defined scan
- Scanning computers
- Updating virus definitions on computers
- About managing quarantined files
- Enabling or disabling TruScan proactive threat scans
- About adjusting the protection scans
- About exceptions
- 14. Managing firewall protection
- 15. Managing intrusion prevention protection
- 16. Managing administrator accounts
- 17. Managing disaster recovery
- A. Maintaining and troubleshooting Symantec Endpoint Protection Small Business Edition
- Restarting client computers
- Finding managed computers
- Converting an unmanaged computer
- Finding the server host name and IP address
- Modifying email server settings
- Modifying the server installation settings
- Investigating client problems
- Troubleshooting Symantec Protection Center communication problems
- Troubleshooting content update problems
- Providing information for Symantec Support
- B. Managing mobile clients and remote clients
- Index
Table 4-1
Client computer preparation (continued)
DescriptionActionStep
Identify the computer groups to use during client installation.
See “About computer groups” on page 81.
Identify computer groupsStep 5
Configuring firewalls for remote deployment
Windows firewalls can interfere with remote client installation and deployment.
Table 4-2 lists the different ways to configure Windows firewall settings, depending
on the operating systems to which you install. See your Windows documentation
for more information.
Table 4-2
Firewall modifications
DescriptionConfiguration
Perform the following tasks to install the client software
remotely:
■ Permit the server to send traffic from TCP ports
1024-5000 to TCP ports 139 and 145 on the clients.
Stateful inspection permits the return traffic
automatically.
■ Permit the clients to receive traffic from the server TCP
ports 1024-5000 on TCP port 139. You must permit the
clients to send traffic from TCP port 139 to TCP ports
1024-5000 on the server.
■ For legacy communications, open UDP port 2967 on all
computers.
Permit servers to send and
receive traffic to and from
TCP ports
Windows Firewall can interfere with remote installation
and communication between the server and the client
computers.
If your computers run any of these operating systems,
perform one of the following tasks:
■ Disable Windows Firewall on the computers.
■ Leave Windows Firewall enabled, and configure the
firewall rules to open ports to permit deployment.
Note: In Windows XP with SP1, the Windows firewall is
called Internet Connection Firewall.
Disable Windows Firewall in
Windows XP, Windows
Server 2003, or Windows
Server 2008
Preparing for client installation
Configuring firewalls for remote deployment
42