Symantec Endpoint Protection (SEP) 14.2 includes new firewall functionality, and default firewall rules may not include some common macOS services.
The firewall feature in SEP for Mac is new and under development. As this feature matures it will include more complete default firewall rules for common macOS network services. In the meantime, the default rule list may need editing.
The following are suggested edits to SEP Firewall policy in Mac Settings (there are separate Windows Settings in firewall policy - these edits do not apply there).
Add these rules to Mac Settings rules, just above "Block broadcast and multicast traffic and don't log" rule:
TCP [Remote Port: 8770] Both directions
UDP [Remote Port: 192] Both directions
TCP & UDP [Remote Port: 88] Both directions
Allow outgoing DLP
TCP [Remote Port: 10443] Outgoing
Allow outgoing RDP
TCP [Remote Port: 3283] Outgoing
Allow outgoing JAMF
TCP [Remote Port: 8443] Outgoing
TCP [Remote Port 389] Both directions TCP [Remote Port 3268] Outgoing
Edit these existing rules in Mac Settings rules - changes in red: