Go to Control Panel > System and Security > Windows Firewall.
If SEP is installed and the service is enabled you should see a notification that SEP is managing these settings:
Once the Windows Firewall service is active, confirm that the "ConSecRuleRuleCategory" is managed by "Windows Firewall"
Open a command prompt.
Type the following: netsh advfirewall show global
Scroll to the bottom and look for ConSecRuleCategory or ConSecRuleRuleCategory (varies based on the version of Windows).
Confirm its value is Windows Firewall.
Configure the SEP client firewall integration and allow IPv6 traffic on the Symantec Endpoint Protection Manager (SEPM) to allow DA to function.
The SEP client can be configured to allow or disable the Windows Firewall in the Firewall Policy on SEPM.
In SEPM, click Policies > Firewall.
Edit the Firewall policy applied to clients using DA. The suggested configuration for use with Microsoft's DA is:
Note: If the SEP Firewall policy option No Action or Restore if Disabled is chosen, the Microsoft Firewall is in charge of all four categories and SEP Firewall rules are not applied. You can verify if SEP is managing the first three firewall configuration categories by the command `netsh advfirewall show global`. If it is, then SEP firewall rules are applied as expected.