question

DesbroussesClment-3807 avatar image
0 Votes"
DesbroussesClment-3807 asked DavidNelson-9652 answered

Miracast and Microsoft Wireless Display Adapter not working with Symantec Endpoint Protection local firewall rules

Hello,

Symantec Endpoint Protection is installed as Aantivirus and local FW on computers in my company. Local firewall policies restricts inbound flow so we had to add some rules in the way to allow Miracast projection :

We added the rules :

  • allow all inbound traffic from 192.168/16 on TCP/7236,7250 and UDP/5353,7236

  • allow all outbound traffic to 192.168/16 on TCP and UDP (all ports)

Now it works on some computers but it does not work on others... And especially it almost never works with TV using Microsoft Wireless Display Adapter.

Do you have any idea on what local FW rules we should add to make it works for every devices ?

Thanks.

windows-10-network
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DavidNelson-9652 avatar image
0 Votes"
DavidNelson-9652 answered

I was locking down my laptop, closing all incoming ports on public networks. After doing that, I could no longer connect to my Microsoft Wireless Display Adapter. Upon researching the issue, I got it to work again after adjusting the windows firewall as follows:

Enable the inbound rule named "Wireless Display (TCP-In)" for public networks.

My understanding is the Wireless Display operates on WiFi Direct. I don't want any inbound ports open on public networks. However, I was not able to figure out how to flag my WiFi Direct wireless monitor as trusted like I can for the regular WiFi wireless networks I can flag as private.

The firewall settings are as follows:
- Program %systemroot%/system32/WUDFHost.exe
- Protocol: TCP
- Authorized Local Principals: NT Authority\User Mode Drivers
- Local Port: Any

I didn't need to enable these inbound firewall rules for the public networks to get my previously connected wireless monitor to work, but they may be needed for discovery or other WiFi direct devices to work:
- Wi-Fi Direct Network Discovery (In)
- Wi-Fi Direct Scan Service Use (In)
- Wi-Fi Spooler Use (In)

David Nelson
Dynamic Enterprise Technologies Inc
Seattle Washington USA

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

SunnyQi-MSFT avatar image
0 Votes"
SunnyQi-MSFT answered

Hi,

Welcome to Q&A platform.

Please kindly understand that Symantec Endpoint Protection is a third-party product which we are not familiar with and we do not have such devices in our lab environment for testing. You would better contact the vender of Symantec Endpoint Protection for further troubleshooting. Appreciate for your understanding.

Best Regards,
Sunny


If the Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DesbroussesClment-3807 avatar image
0 Votes"
DesbroussesClment-3807 answered

Hi,

Thanks for your answer.
Actually I've opened a case at Symantec first, they advised the ports to open but as it did not resolve everything they recommended to contact Microsoft. And here I am ;)

Is there any official documentation regarding the protocol used by Microsoft Wireless Display Adapter ? I've already found this one for Miracast : https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-mice/9598ca72-d937-466c-95f6-70401bb10bdb?redirectedfrom=MSDN

Regards,
Clément

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.