SEP always communicate to SEDR through proxy even if they are in name subnet or gateway. SEP doesn’t communicate to EDR directly if we choose “use the proxy server specified by the client browser(default)” or “Custom Proxy settings”. However, SEP connect to EDR when we select “Do no used proxy option”.

SEDR 4.0

SEP 14.0 RU1 MP 1 and 14.2 RU1

Proxy: ISA

SEP Firewall: where all outgoing traffic from Proxy to SEDR is BLOCKED.

Note: Install ISA and SEP Firewall on same machine.

Note: SEDR/Proxy/SEPM/SEP all are in same subnet & Gateway.

Limitation with SEP Design. SEP does not support the proxy bypass exception list currently. So even if in Default Browser proxy we set to bypass SEDR ipaddress or hostname, SEP still go through proxy.

Issue will be fix in Symantec Endpoint Protection 14.3 version