How can I configure Symantec Endpoint Protection Agent to allow access to windows shares?
Posted
by Peter Bernier
on Server Fault
See other posts from Server Fault
or by Peter Bernier
Published on 2010-06-17T13:33:55Z
Indexed on
2010/06/17
13:43 UTC
Read the original article
Hit count: 1579
I'm having some difficulties exposing a standard windows file share on a Windows Embedded Standard 2009 device that is running Symantec Endpoint Protection Agent 5.1.
I'm using simply file sharing to expose a particular directory. That share is visible locally on the machine and externally visible when I disable the endpoint protection agent.
I've added a rule (and moved it to the to ensure priority) allowing all hosts access on TDP ports 137,138,138,445 and another rule allowing UDP access on ports 137,138,139. When I try to connect, two endpoint protection dialogs pop up saying:
Traffic has been blocked from this application: NWLINK2 IPX Protocol Driver (nwlnkipx.sys) Traffic has been blocked from this application: IPv6 driver (tcpip6.sys)
I'm not using IPv6 anywhere.
Interestingly, I discovered a workaround in that I can white-list all traffic from the subnet the device is on, which meets my needs, but I'm still curious as to why my original approach wasn't successful.
Can anyone suggestion a reason why the above endpoint protection rules won't allow me to access windows file shares on the device?
© Server Fault or respective owner