Share via

Miracast and Microsoft Wireless Display Adapter not working with Symantec Endpoint Protection local firewall rules

Desbrousses, Clément 21 Reputation points
2021-07-23T11:37:27.943+00:00

Hello,

Symantec Endpoint Protection is installed as Aantivirus and local FW on computers in my company. Local firewall policies restricts inbound flow so we had to add some rules in the way to allow Miracast projection :

We added the rules :

  • allow all inbound traffic from 192.168/16 on TCP/7236,7250 and UDP/5353,7236
  • allow all outbound traffic to 192.168/16 on TCP and UDP (all ports)

Now it works on some computers but it does not work on others... And especially it almost never works with TV using Microsoft Wireless Display Adapter.

Do you have any idea on what local FW rules we should add to make it works for every devices ?

Thanks.

Windows 10 Network
Windows 10 Network
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Network: A group of devices that communicate either wirelessly or via a physical connection.
2,289 questions
0 comments
Accepted answer
  1. David Nelson 116 Reputation points
    2021-08-14T19:16:34.213+00:00

    I was locking down my laptop, closing all incoming ports on public networks. After doing that, I could no longer connect to my Microsoft Wireless Display Adapter. Upon researching the issue, I got it to work again after adjusting the windows firewall as follows:

    Enable the inbound rule named "Wireless Display (TCP-In)" for public networks.

    My understanding is the Wireless Display operates on WiFi Direct. I don't want any inbound ports open on public networks. However, I was not able to figure out how to flag my WiFi Direct wireless monitor as trusted like I can for the regular WiFi wireless networks I can flag as private.

    The firewall settings are as follows:

    • Program %systemroot%/system32/WUDFHost.exe
    • Protocol: TCP
    • Authorized Local Principals: NT Authority\User Mode Drivers
    • Local Port: Any

    I didn't need to enable these inbound firewall rules for the public networks to get my previously connected wireless monitor to work, but they may be needed for discovery or other WiFi direct devices to work:

    • Wi-Fi Direct Network Discovery (In)
    • Wi-Fi Direct Scan Service Use (In)
    • Wi-Fi Spooler Use (In)

    David Nelson
    Dynamic Enterprise Technologies Inc
    Seattle Washington USA

    0 comments

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Sunny Qi 10,916 Reputation points Microsoft Vendor
    2021-07-26T02:11:06.23+00:00

    Hi,

    Welcome to Q&A platform.

    Please kindly understand that Symantec Endpoint Protection is a third-party product which we are not familiar with and we do not have such devices in our lab environment for testing. You would better contact the vender of Symantec Endpoint Protection for further troubleshooting. Appreciate for your understanding.

    Best Regards,
    Sunny

    ----------

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments
  2. Desbrousses, Clément 21 Reputation points
    2021-07-26T10:06:39.447+00:00

    Hi,

    Thanks for your answer.
    Actually I've opened a case at Symantec first, they advised the ports to open but as it did not resolve everything they recommended to contact Microsoft. And here I am ;)

    Is there any official documentation regarding the protocol used by Microsoft Wireless Display Adapter ? I've already found this one for Miracast : https://learn.microsoft.com/en-us/openspecs/windows_protocols/ms-mice/9598ca72-d937-466c-95f6-70401bb10bdb?redirectedfrom=MSDN

    Regards,
    Clément

    0 comments