Adding a trusted internal IP address for clients on a management server

Article:HOWTO81814  |  Created: 2012-10-25  |  Updated: 2012-10-25  |  Article URL http://www.symantec.com/docs/HOWTO81814
Article Type
How To


Subject


Adding a trusted internal IP address for clients on a management server

The Trusted Internal IP table has a list of internal IP addresses that external clients are allowed to communicate with, regardless of whether a client currently runs or has passed the Host Integrity check.

If you run two Gateway Enforcer appliances in a series so that a client connects through more than one Gateway Enforcer appliance, the Gateway Enforcer appliance closest to the Symantec Endpoint Protection Manager needs to be specified as a trusted internal IP address of the other Gateway Enforcer appliances. If a client first fails a Host Integrity check and then passes it, you may have up to a 5-minute delay before a client can connect to the network.

See About trusted IP addresses.

To add a trusted internal IP address for clients on a management server

  1. In the Symantec Endpoint Protection Manager Console, click Admin.

  2. In the Admin page, click Servers.

  3. Select and expand the group of Enforcers.

  4. Select the Gateway Enforcer appliance group for which you want to edit client IP address ranges on the list of addresses that require authentication.

  5. Under Tasks, click Edit Group Properties.

  6. In the Gateway Settings dialog box, on the Auth Range tab, in the Trusted IP address range area, select Trusted Internal IP address range from the drop-down list.

  7. Click Add.

  8. In the IP Address Settings dialog box, type an IP address or address range.

  9. Click OK

    The IP address is added to the list and a check mark appears in the Enable column.

  10. In the Settings dialog box, click OK.


Legacy ID



v9514405_v81664632


Article URL http://www.symantec.com/docs/HOWTO81814


Terms of use for this information are found in Legal Notices