Hi to all. I recently bought Norton Internet Security 2009 after being using McAfee Internet Sec. for 2 years. The reason why I moved to Norton is just because I wanted to see for myself how it was performing now (last time I used Norton was when it first appeared.. NAV 1.0 haha... not so many years ago  :)

I like the fact that it is very lightweight but I don't like how it's firewall has blocked Windows Update and how it even blocks it's Norton Insight feature! I have to disable the firewall to be able to check for new updates... I've searched but I still can't find a proper solution to both issues.

Can anybody help me please?

Many thanks in advance!

Go to the Program Rules in Smart Firewall Internet Settings, set ALLOW for both Norton Insight and Windows Updates. Try to create a program rule for allowing wuauclt.exe (Windows Update AutoUpdate Client) and ccsvchst.exe. The wuauclt.exe file is located in the folder C:\Windows\System32.

Thanks. I worked for Insight but I'm still unable to run Windows Update properly. I still get the 80072efd error..

Chatted with a Norton technician but she couldn't gain access to my laptop so she couldn't help me..

Anyway, Ive been reading about this problem and Microsoft recommends to add 3 URLs to the Firewall. How can I do that?

Thanks in advance :)

Try creating a general rule in firewall:

1. Start Norton Internet Security.
2. In the Internet pane, click Settings.
3. Under Smart Firewall, click Configure next to Advanced Settings.
4. Under Advanced Settings, click Configure next to General Rules.
5. Click Add.
6. In the Add Rule wizard, select Allow, and then click Next.
7. Select Connections to and from other computers, and then click Next.
8. Select Only the computers and sites listed below, and then click Add.

9. Select Individually, enter the URL(Web address) and then click OK.
10. Click Next.

11. Select All types of communications, and then click Next.
12. If you want the logs for this rule to be saved, check Create an event log entry, and then click Next.
13. In the “What do you want to call this rule?” box, type a name for the rule, and then click Next.
14. Click Finish. 
15. Click Move Up to move the rule to top, and make it a higher priority.

16. Click OK, and again click OK.

17. Click OK.

Many thanks for the info Yogesh_mohan! I entered one of the Microsoft addresses but let me ask you: how can I use wildcards when entering a URL?

I ask because MS recommends adding these two addresses too: 

• https://*.update.microsoft.com

• http://download.windowsupdate.com

and can't find a way to enter them. Also, it seems Norton doesn't accept entering "http" or "https"

Thanks for all your help!

UPDATE: I reviewed the logs and noticed that the firewall was using the rule called "Block access to secure sites" which is programmed to block connection to other computers using protocol TCP with  "remote https port 443". I disabled the rule and the Windows Update is working again.

Now, is it safe to disable this rule?

Yup its safe, and it sud not be there in the first place.

As we kno nis 09 has a inbound firewall and it sud not block connections going out of ur pc.

It must b remains of some other security suite.

As the connections are outbound, and seems legit so there is no need to worry. 

Hi Rohit1gupta:

As you can see from the NIS2009 advertising, it does have a 2-way firewall.  Does this make a difference to why you have trouble getting updates?  

Thanks for your reply. What I can't understand is why that rule was automatically created, but well, my first (and I hope, only) issues with NIS 2009 have been solved.

As delphinium mentions, is probably because it's new (?) two-way firewall protection... probably the majority of the people here in this forum doesn't have the Windows Update issue because are regular Norton users and just updated from previous versions and no new firewall rules were created, but this was my first Norton product in years, so it was a clean installation and NIS installed ALL of it's features.

alfoundat,

 Have you tried resetting the Firewall to factory settings and checked, It will work for the windows updates.

hi Sathish232... well, I didn't reset to factory defaults but I will if I find some other issue with the firewall ;)

thanks

 Have you used the McAfee removal tool yet? some of the components might or could be interfering with norton

McAfee removal tool

http://service.mcafee.com/faqdocument.aspx?id=TS100507〈=en_US&prior_tid=2&AnswerID=16777217&turl==http%3A%2F%2Fkb.mcafee.com%2Finfocenter%2Findex%3Fpage%3Dcontent%26id%3DTS100507%26actp%3Dsearch

I did gantz. Thanks for the recommendation!

I still can't understand why Norton would create a rule against Windows Update and against it's own Insight feature due to other anti-malware products previously installed in my computer.

Hi,

How are you verifying that the Norton FW is blocking Windows Update?  If you check the Security History logs, it will show if it created a block rule for Windows Update (svchost.exe).  We do not ever automatically create a block rule for any application unless it's been identified as a high risk threat -- which is not the case for svchost.exe.  Did you ever turn off Automatic Program Control and accidentally click "block" when the firewall alert came up?

/Chester

I am running Vista 64 with Norton 360 installed.  I started receiving the Windows Update error "80072efd" on 3/22 and have been trying to resolve it ever since.  I tried coping the 3 web addresses from the Microsoft help page but Norton Firewall rejected the addresses with a "unable to resolve DNS" error.  I know Windows update works fine with the Norton Firewall turned off and the Windows Firewall turned on.  So I was just about ready to live with this solution, until I found a solution that works on my system. 

I was able to resolve the issue by opening Norton 360, cursor over PC Security, select "Manage Firewall", click the "Reset" button, and then click "yes" to the warning message.  I then performed a Windows Update and it worked! 

Thanks, Rex.  I’m having the exact same problem.  It only happened after I installed the update Microsoft.net framework 3.5 Service pack 1.  I’ll try what you did