Symantec Endpoint blocking ALL Internet Traffic on Windows 7

I have a few new laptops running Windows 7 that need to use the Unmanaged Symantec Endpoint Client.  However, on reboot, all of them experience the same symptom--they are blocked from all internet traffic unless I disable the Network Threat Protection.  I'm sure there's a setting I can change, but I don't know what it is.  Help please!
Lisa JacksonCAOAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Is the log reporting anyting?
Lisa JacksonCAOAuthor Commented:
Log just says that everything is blocked based on rules.  The rules enabled are the default rules, which say "Block IPv6" and "Block IPv6overIPv4".  There is an entry for Allow All IP Protocol types, but that one is not checked.  I didn't want to disable the two blocks or enable the Allow All because I was unsure what the reprecussions of that might be.
>>>> I didn't want to disable the two blocks or enable the Allow All

You should disable them just to see whether that solves your problem. I think it will solve the blocking issue but doubt that the IPv6 requests can be processed by your router.

Check the settings of the network adapter. I assume you have (only) IPv6 service enabled and that's why you were blocked. Check the IPv4 as well (all properties set to automatic) cause I assume that your router also works on IPv4 (IPv6 surely is overkill for a LAN which needs a handful IP numbers).

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Lisa JacksonCAOAuthor Commented:
Disabling the two blocks had no effect, but enabling the "Allow All" fixed the problem.  Is there any kind of security risk though with that enabled?
>>>> Is there any kind of security risk though with that enabled?

Only if you have malware on your system. Then they could go out with no restrictions.

I wonder why Symantec should block normal internet browsing. You could try to add a rule which allows outgoing and incoming messages on port 80 (WEB) but actually I think there is another issue why it doesn't work. I run Norton Internet Suite on W7 and I had to define rules for my (second) LAN but not for the internet.

Did you check your network settings? What services did you have enabled?
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Anti-Virus Apps

From novice to tech pro — start learning today.