06-15-2012 09:05 AM - edited 02-21-2020 06:08 PM
We are currently using Cisco Anyconnect ver 3.0.3050 with SEP11. Some users are getting a Port Scan Attack message from SEP11. Never saw this when using our previous Nortel VPN client. Has anyone seen this before?
06-18-2012 07:49 AM
Try adding an Application exception to your SEP policy.
Creating Centralized Exceptions Policies in the Symantec Endpoint Protection Manager 11
http://www.symantec.com/business/support/index?page=content&id=TECH104326&locale=en_US
08-16-2012 01:35 PM
Thanks Tom. I assume the exception should be for the service Anyconnect uses?
C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
08-17-2012 09:45 AM
Hi Adam,
That path should work as the exception rule. If not, you might want to engage our support team for further assistance. BTW, I will no longer be at Symantec after this day.
Best,
Thomas
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide