Blocking a Website using Symantec Endpoint Protection

Article:TECH92405  |  Created: 2009-01-16  |  Updated: 2013-12-17  |  Article URL http://www.symantec.com/docs/TECH92405
Article Type
Technical Solution


Issue



How to Block a Website using Symantec Endpoint Protection (SEP)

Symptoms
You have managed computers running Symantec Endpoint Protection. You want to block them from accessing a specific website using Symantec Endpoint Protection.


 


Environment



Website blocking will only function if the computers have SEP's optional Network Threat Protection (NTP) component installed.  If the NTP component is not deployed, the Symantec Endpoint Protection client will not have the ability to block access to websites.


Solution



Open the Symantec Endpoint Protection Manager (SEPM) console

  1. Click on Policies button
  2. Under view Policies > Select Firewall
  3. Edit the existing Firewall Policy
  4. Click Rules
  5. Right Click Rule Number 2 and Select Add a Blank Rule
  6. Right Click Under the Action and Set it to Block
  7. Right Click on the Host Select Edit
  8. Under Specify host names or addresses of computers that trigger the rule Select : Local /Remote
  9. Under Remote Click Add Under Type Select DNS domain
  10. Under DNS Domain type the name of the Website e.g. : *.symantec.com
  11. Click OK and close the Host List Window
  12. Click OK and close the Firewall Policy Window
  13. Assign the policy to the desired group


Note: In the same way, if you add *.com in Step 11 it will block the entire range of .com websites

The process described in this article is illustrated in the Connect article How To Block Internet address via Sep Manager Firewall Rule


 




Legacy ID



2009021621532848


Article URL http://www.symantec.com/docs/TECH92405


Terms of use for this information are found in Legal Notices