You need to check if there is network connectivity from the Symantec Endpoint Protection (SEP) client computer to the Internet-based Symantec Reputation server.

SEP clients require robust, reliable connectivity to online Reputation servers for the Insight component to function.  Other components also rely upon Reputation in order to function most efficiently.

Most firewalls already allow Insight queries. Queries currently use the HTTPS protocol over the standard port 443 to a Symantec-controlled server.  Reputation submissions and lookups use the same proxy settings used for other technologies within SEP.

To test connectivity from a SEP client system to the Symantec Reputation server, type the following URL In a web browser:

https://ent-shasta-rrs.symantec.com/

A successful connection can be established if browsing to this URL results in a 400 or 405 response status code.  The URL is not an HTTP request that the server can accept but it does indicate that the server received it (and rejected it) successfully.  

Otherwise, it is necessary to consult with the network administrator for the particular SEP client's network to determine at what point on the local network access to that URL is blocked.