You are unable to install the Symantec Endpoint Protection (SEP) client on Windows 7 and above due to an error stating the Base Filtering Engine service is stopped or missing.
Base Filtering Engine (BFE) service is not running. Please ensure it is enabled before installing Symantec Endpoint Protection.
This will happen if the Windows Base Filtering Engine service is stopped or missing.
The Base Filtering Engine (BFE) is a Microsoft service that manages firewall and Internet Protocol security (IPsec) policies and implements user mode filtering. Stopping or disabling the BFE service will significantly reduce the security of the system. It will also result in unpredictable behavior in IPsec management and firewall applications. Intrusion Prevention in Symantec Endpoint Protection requires the Base Filtering Engine to be running. If the Base Filtering Engine is stopped, Intrusion Prevention cannot make detections.
See also Here