Symantec Endpoint Protection and Krypton

Patrick Hobart

Posted on 29.01.2018 15:57

We have a Krypton, which uses EtherCAT for communications to our PC. We have been able to use it successfully by disabling Symantec Endpoint Protection on the PC. When it is enabled, the PC fails to see the Krypton. Unfortunately, company policy does not allow for us to disable Symantec Endpoint Protection on our PC's, but our IT department will allow us to modify a change in rules after a review of the changes.

What ports should be open or rules must be in place in a firewall to allow for the Krypton to function correctly without simply just disabling all network protections?

Thank you!

Aljaž Kropivšek
Control and Automation Application Engineer
Posted on 10.06.2018 22:45

Unfortunately, we don't have any first hand experience with Symantec Endpoint Protection, but we did have a customer once that was experiencing the same issue as you described. We were trying to solve the problem for quite some time, but in the end they gave up and simply disabled SEP.

The problem is that EtherCAT is a low level protocol. Because of that it doesn't work with ports, so it is not possible to open a few ports to let it through the firewall. Additionally, SEP is very aggressive and it looks like it also works on lower levels, preventing even the filter drivers, such as our EthercatDAQ filter driver, from doing their job.

If you have found a solution for your problem, we would be really grateful if you could share it with us.

Login to reply to this topic. If you don't have account yet, you can signup for free account .