Automatically allowing communications for essential network services

Article:HOWTO81172  |  Created: 2012-10-24  |  Updated: 2014-09-21  |  Article URL http://www.symantec.com/docs/HOWTO81172
Article Type
How To


Subject


Automatically allowing communications for essential network services

You can enable the options that automatically permit communication between certain network services so you do not have to define the rules that explicitly allow those services. You can also enable traffic settings to detect and block the traffic that communicates through NetBIOS and token rings.

You can allow outbound requests and inbound replies for the network connections that are configured to use DHCP, DNS, and WINS traffic.

The filters allow DHCP, DNS, or WINS clients to receive an IP address from a server. It also protects the clients against attacks from the network with the following conditions:

If the client sends a request to the server

The client waits for five seconds to allow an inbound response.

If the client does not send a request to the server

Each filter does not allow the packet.

When you enable these options, Symantec Endpoint Protection permits the packet if a request was made; it does not block packets. You must create a firewall rule to block packets.

Note:

To configure these settings in mixed control, you must also enable these settings in the Client User Interface Mixed Control Settings dialog box.

To automatically allow communications for essential network services

  1. In the console, open a Firewall policy.

  2. On the Firewall Policy page, click Built-in Rules.

  3. Check the options that you want to enable.

  4. Click OK.

  5. If you are prompted, assign the policy to a location.

See Creating a firewall policy

See Editing a policy.

See Locking and unlocking settings by changing the user control level.


Legacy ID



v8476190_v81626096


Article URL http://www.symantec.com/docs/HOWTO81172


Terms of use for this information are found in Legal Notices