Symantec Endpoint Protection Manager (SEPM) Uses Web Browsing Traffic on Destination Port 8014
25706
Created On 09/26/18 13:51 PM - Last Modified 06/13/23 04:18 AM
Resolution
Issue
In the Palo Alto Networks application database, Symantec Endpoint Protection Manager (SEPM) application depends on SSL and web-browsing. Some traffic can be seen by SEPM is regular, such as http / web-browsing traffic, except for the traffic on destination port 8014.
Cause
If there is an application default configured as a service on the Security Policy that allows the endpoint traffic, the Palo Alto Networks firewall will deny web browsing traffic on destination port 8014.
This traffic can only be recognized as web browsing because there is no specific indication that this traffic is SEPM.
Resolution
There are two possible resolutions:
- Allow any service in the Security Policy
- Allow web browsing traffic on destination port 8014
owner: rvanderveken