Hi,
Thank you for posting in Symantec Connect.
I would be glad to answer your question.
You need to open few more ports.
Best Practices: Configuring a Symantec Endpoint Protection environment in a DMZ
http://www.symantec.com/docs/TECH178325
How to allow Symantec Endpoint Protection clients in a remote location to be managed by a Symantec Endpoint Protection Manager that's behind a NAT device
http://www.symantec.com/docs/TECH93033
Communication issues with SEP client installed in DMZ while the SEP Manager is outside DMZ
http://www.symantec.com/docs/TECH146736