Endpoint Protection

 View Only

  • 1.  Can SEP client block network connections if uanble to connect to SEPM server?

    Posted Oct 02, 2014 04:44 PM

    Is there a way to setup a policy so that the sep client can block all network connections until the client re/connects with the SEPM server? So, say we have a client that goes offline from the SEPM server we want to disable all netwrk traffic until it reconnects with the SEPM server.

    Thanks,

     



  • 2.  RE: Can SEP client block network connections if uanble to connect to SEPM server?

    Posted Oct 02, 2014 04:46 PM

    Yea you can use location awareness. Create two locations, one for ON network, one for OFF. Create two firewall policies, one for ON and configure as you need, create one for OFF and configure it to block whatever you need when off the network. Good article here:

    Setting up Scenario Two location awareness conditions



  • 3.  RE: Can SEP client block network connections if uanble to connect to SEPM server?

    Posted Oct 03, 2014 03:46 AM

    Thumbs Up to Brian, that's exactly the way to do it yes

    On a related note though, if you're just trying to get SEP to determine if it's on the corporate network or not, then I'd suggest using a different rule than the "Connected to Management Server" one.  The reason being that I've found this to be fairly volatile, causing clients to switch locations for a simple network blip sometimes.

    I'd personally suggest using the DNS Lookup rule, as I've found it far more reliable.