Can Sep firewall do that?

hi,

The answer to your question is Yes.

This is possible by enabling the "writing to the desired log" feature in Firewall Rules. A small screenshot shown below may help you for the same.

Hello Manish.
thank you for answer.
Can i ask more please?
How can i read this firewall logs whithout connect to client computer?
Which rule should i log?Am i create new rule for all access?
Fatih.

How can i read this firewall logs whithout connect to client computer?
-> You can pull up reports from Monitors > Log tab. Over there, you will find a number of filters for the logs that you wish to see.

Which rule should i log?Am i create new rule for all access?
-> The Rule for which you want the logs to be written. eg. you create a rule to block abc.com, you can enable write to Log option for that Rule.

If you create firewall rule for each website then sep can log the websites access by users which is impossible.

yes you can create a firewall rule for clients internet explorer which will log the websites visited but you can not access those logs from sepm.

this should be done from your proxy server.

ok i read it in logs page. there is too much log is written in there. can i delete old logs?

And i want to log all internet address access not only abc.com. how can i do that?
Thanks
Fatih.

This how you can Pull up Traffic log reports via the SEPM.

Hello Vikram.
Thanks for answer. But Can i delete old logs?
Thanks

program files\symantec\Symantec Endpoint Protection Manager\data\inbox\log

Hello Vikram.
Thank you so much.
Best Regards.
Fatih