Video Screencast Help
Give us your opinion and win with Symantec! Please help us by taking this survey to tell us about your experience with Symantec Connect, so that we can continue to grow and improve.  Take the survey.

Block Internet address via Sep Manager Firewall Rule

Created: 24 Dec 2012 • Updated: 14 Jan 2013 | 5 comments
This issue has been solved. See solution.


Can anyone help me.

How To Block Internet address via Sep Manager Firewall Rule.

Discussion Filed Under:

Comments 5 CommentsJump to latest comment

Ashish-Sharma's picture

The Symantec Endpoint Protection firewall uses firewall policies and rules to allow or block network traffic. The Symantec Endpoint Protection includes a default Firewall policy with default firewall rules and firewall settings for the office environment. The office environment is normally under the protection of corporate firewalls, boundary packet filters, or antivirus servers. Therefore, it is normally more secure than most home environments, where limited boundary protection is available. 

About the Symantec Endpoint Protection firewall 

Available Videos:

Allow & Block websites using SEP firewall

How To Block Internet addres via Sep Manager Firweall Rule

Thanks In Advance

Ashish Sharma

Ambesh_444's picture

Hi prince,

Plaese find the article and let me know.

1) How to block/allow website access using the Symantec Endpoint Protection Manager custom Intrusion Prevention Signature policy

2) Video: Allow and Block websites using Symantec Endpoint Protection Firewall

3) Article: How To Block Internet address via Sep Manager Firewall Rule

Hope this help you..



Thank& Regards,


"Your satisfaction is very important to us. If you find above information helpful or it has resolved your issue. Please don't forget to mark the thread as solved."

Mithun Sanghavi's picture


Follow this steps as You do not want the users to visit to any website except for certain sites no matter what browser they use.


The above configuration can be done by creating only 2 firewall rules. Please follow the below steps to configure the rules.

1. Go to Firewall policy > Rules.

2. Click on Add Rule button. Select Host > Next > From Address Type drop down menu select DNS domain.

3. Select DNS Domain as *.* then Click Next > Click Finish.

4. Once the rule is created, highlight the New Rule. Go to Service column, right click and edit, then select Add. The rule will be TCP, Source/destination with remote port 80,443 click ok and ok again. Then go to Action column and make it set to "Block".

The above rule is to block all the websites. To create a rule to allow only selected websites, please follow the steps below.

1. Go to firewall policy> Rules.

2. Click on Add Rule. Select Host > Next > From Address Type drop down menu select DNS domain.

3. Enter DNS Domain as *.*symantec*.* This is an example which means all the urls related to symantec will be allowed.

4. Click Next > Click Finish. Multiple websites can be added to the same rule.

5. Once the rule is created, highlight the new rule. Go to Action column and make it to Allow.

Note: Place the "Allow" rule on top of "Block" rule.

Assign the policy to the required group. This will allow only the selected website and block all other website.

Caution: If the above rule is applied to the SEPM itself, we need to allow Symantec domain in order to run the liveupdate. This should be applicable to all the machine where Liveupdate will run.

Hope that helps!!

Mithun Sanghavi
Associate Security Architect


Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

Ashish-Sharma's picture

HI Prince,

Do you need any more help here??

Thanks In Advance

Ashish Sharma