Symantec Endpoint Protection and Krypton
We have a Krypton, which uses EtherCAT for communications to our PC. We have been able to use it successfully by disabling Symantec Endpoint Protection on the PC. When it is enabled, the PC fails to see the Krypton. Unfortunately, company policy does not allow for us to disable Symantec Endpoint Protection on our PC's, but our IT department will allow us to modify a change in rules after a review of the changes.
What ports should be open or rules must be in place in a firewall to allow for the Krypton to function correctly without simply just disabling all network protections?
Control and Automation Application Engineer
Unfortunately, we don't have any first hand experience with Symantec Endpoint Protection, but we did have a customer once that was experiencing the same issue as you described. We were trying to solve the problem for quite some time, but in the end they gave up and simply disabled SEP.
The problem is that EtherCAT is a low level protocol. Because of that it doesn't work with ports, so it is not possible to open a few ports to let it through the firewall. Additionally, SEP is very aggressive and it looks like it also works on lower levels, preventing even the filter drivers, such as our EthercatDAQ filter driver, from doing their job.
If you have found a solution for your problem, we would be really grateful if you could share it with us.