By default, file and printer sharing is disabled when using Symantec Endpoint Protection Small Business Edition (SEP SBE).
To enable file and printer sharing, you must create a copy of the default policy, make your configuration changes, and apply the new policy to a group.
- In the SEP SBE Management Console, click Policies.
- Under Services, click Endpoint Protection.
- Select Endpoint Protection Default Policy.
A warning appears at the top of the page to indicate that the default policy is not editable.
- In the warning, click Save a Copy.
- Change the Policy Name and Description.
We recommend identifying this policy as the default policy, but with file and printer sharing enabled.
- Under Network Protection, expand Firewall Rules.
The list of firewall rules appears.
- For the File and Printer Sharing rule, in the Active column, check the box to enable file and printer sharing.
- Under Groups, select the group(s)s that should use the new policy.
- Click Save & Apply.
Advanced configuration settings
Certain environments require additional firewall rules to gain clear communication to network devices and shares. These environments usually consist of more than one subnet, or have shared network devices connected directly to workstations.
In these environments, create a new firewall rule with the following ports opened locally for both inbound and outbound traffic.
- TCP 135
- UDP 137
- UDP 138
- TCP 139
- TCP 445
- UDP 5355
Connectivity issues persist
If you continue having connectivity issues to network devices and shares, follow these steps in the policy assigned to the affected group.
- Under Network Protection check the box Report Blocked Events.
- Test the connection several times.
After a short period of time (sometimes up to 30 minutes), any blocked events will appear in the History tab for the affected computer.
- In the report, in the Category column, look for Firewall Activities.
- In the Activity column, click the link for the firewall activity.
- Review which local ports and protocols are being blocked, and add them to the firewall rule you created earlier.
- Under Program Control, create allow rules and add any executable files recommended by the manufacturer of the shared network device.
Imported Document Id