Video Screencast Help
Search Video Help Close Back
to help
Not able to make it to Vision this year? Get a sampling in the Best of Vision on Demand group.

Firewall rule confusion

Updated: 21 May 2010 | 5 comments
dimitri limanovski's picture
dimitri limanovski
0 0 Votes
Login to vote
This issue has been solved. See solution.

Hello,
I am confused about firewall rules in SEP. Coming from Checkpoint/Cisco firewalls, I am used to being able to specify source/destination as any/any, yet I can't seem to be able to do the same in SEP. Can someone tell me how to make this simple firewall policy in SEP:+
- allow smart DNS/WINS/DHCP <-- this is built in
- allow ALL traffic outbound from client
- block ALL traffic inbound to client
For the life of me I can't see how to do it!
Thanks!

Discussion Filed Under:
, ,

Comments

Prachand's picture
24
Mar
2010
0 Votes 0
Login to vote
Prachand
Trusted Advisor

Title: 'Symantec Endpoint

Title: 'Symantec Endpoint Protection 11.0 Network Threat Protection (Firewall) Overview and Best Practices White Paper'
Document ID: 2007121714495348
> Web URL: http://service1.symantec.com/support/ent-security....

Title: 'How to add a rule using the"Add Firewall Rule Wizard"'
Document ID: 2008060208101648
> Web URL: http://service1.symantec.com/support/ent-security....

Title: 'Using " * " or "Any" as "Application" when creating firewall rules in Symantec Endpoint Protection 11.0'
Document ID: 2008022815002148
> Web URL: http://service1.symantec.com/support/ent-security....

Prachand Kumar MCSE-2003 Symantec Technical Specialist (SCTS)

SOLUTION
dimitri limanovski's picture
24
Mar
2010
0 Votes 0
Login to vote
dimitri limanovski

Prachand, I've seen all those

Prachand, I've seen all those documents. The problem is that SEP has no variable for inbound/outbound. You can't specify to allow or block ALL/ANY outbound or inbound, unless I'm not looking in the right spot.

thatdude's picture
24
Mar
2010
0 Votes 0
Login to vote
thatdude

Create a service which you

Create a network service which you can define local/remote \ incound\outbound. Then create a firewall rule and apply the service.

i've got a inbound all and outbound all rule. Basically select IP for protocol, Protocol type leave blank, and then select direction

IP:Outgoing
IP:Incoming

dimitri limanovski's picture
24
Mar
2010
0 Votes 0
Login to vote
dimitri limanovski

Now we're talking! Little

Now we're talking! Little creativity goes a long way, thanks mate! I will try it out.

thatdude's picture
24
Mar
2010
0 Votes 0
Login to vote
thatdude

No problem. Let me know if

No problem. Let me know if you have anymore questions.

Technical Support

Symantec.com

Store

Community Stats

Total Content Items
Members
270,010