I am sure, only AV and AVs will not block the port. Just to rule out the possibility, remove SEP and see.
Port 42, TCP and UDP are used to initiate a connection with a remote WINS server. If you block these ports at the firewall, you help prevent computers that are behind that firewall from trying to use this vulnerability. TCP port 42 and UDP port 42 are the default WINS replication ports. We recommend blocking all incoming unsolicited communication from the Internet. http://support.microsoft.com/kb/890710
Check this
http://support.microsoft.com/kb/832017
Port requirement for DCCollapse this tableExpand this table
Application protocol
|
Protocol
|
Ports
|
Global Catalog Server
|
TCP
|
3269
|
Global Catalog Server
|
TCP
|
3268
|
LDAP Server
|
TCP
|
389
|
LDAP Server
|
UDP
|
389
|
LDAP SSL
|
TCP
|
636
|
LDAP SSL
|
UDP
|
636
|
|
|
|
|
|
|
RPC
|
TCP
|
135
|
RPC randomly allocated high TCP ports¹
|
TCP
|
1024 - 65535
49152 - 65535²
|
DNS
|
UDP
|
53
|
DNS
|
TCP
|
53
|