When Web Traffic Redirection (WTR) is enabled on the Symantec Endpoint Protection (SEP) client, web browsing is slow with delays up to 15 seconds and attempts to go to https://pod.threatpulse.com fail to show a protected status. Otherwise all settings in the SEP Integrations policy are setup correctly.
Both proxy.threatpulse.com and ep.threatpulse.net are blocked through an edge firewall configured to drop packets, or the firewall or other networking device goes down, preventing such access. The SEP Local Proxy Service (LPS) will fail-open but in doing so introduces a 15 second delay while awaiting connection responses, for each connection request.
Both the proxy.threatpulse.com and ep.threatpulse.net URLs must be allowed through your firewall and other networking devices.
The 15-second delay behavior has been modified to improve end-user experience. This fix is included in WTR Engine version 220.127.116.114. Run LiveUpdate to download the latest WTR Engine release.
WTR: Fail-open scenario introduces delays
Subscribing will provide email updates when this Article is updated. Login is required.