Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

HOw to create condition2 for Pcs that do not use the regular domain

Created: 07 Feb 2013 • Updated: 07 Feb 2013 | 8 comments
This issue has been solved. See solution.

I am trying to re-create a location condition and do not know how.  I am sending a screenshot of the location condition that i need to re-create.  I figured out how to create condition1 (Client pc does not connect to the management server).

I cannot figure out how to create the 2nd condition (if client pc does not use the domain names listed below:)

Can someone help me figure this out?

Comments 8 CommentsJump to latest comment

.Brian's picture

Go to Policies page

Click Policy Components

Select Host Groups

Give it a name and click Add

Edit this part accordingly

Click OK, OK

Now go to Clients page

Under that location, add your 2nd condition and in the drop down select DNS Server Address

Click Add

For the Type, select Host Group and select the one you just created

Click OK, OK

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

MzSolo's picture

thank you for your response - the 2nd condition looks different than the one i started with - is it doing the same thing?

.Brian's picture

Let me take a closer look at this. I didn't read closely enough.

I assume you are on 12.1 now correct? Was this in place before 12.1 (in 11.x?)

If you select Condition 2 and hit Edit, what comes up? A box with "Specify Location Criteria" should pop up

If so, what is the "Type:" field set to?

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

.Brian's picture

Nevermind, I found it.

For the "Type" field select DHCP Connection DNS Suffix

Click Add

Under DHCP Connection DNS Suffix, type in "intra.dhs.ca.gov"

Click Ok and OK again

Now it will show correctly like your screenshot

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

MzSolo's picture

THANKS - PERFECT MATCH!!  now hopefully it will work.  I am trying to create a firewall policy that will allow communication with two Novell servers on our floor that use the IPX protocol.  Very Frustrating!

SOLUTION
.Brian's picture

Try the steps here:

Inbound Novell IPX frames ETHERNET [type=0xE0E0] are filtered by SEP Firewall policy

Article:TECH155349  |  Created: 2011-03-11  |  Updated: 2011-08-22  |  Article URL http://www.symantec.com/docs/TECH155349

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

MzSolo's picture

just wanted to let you know that your instructions WORKED PERFECLTY!!!  my folks can now reach the novell servers.   THANK YOU SOOOOOOOOOOOOOOOOOOOOOO  MUCH!!!!!

.Brian's picture

Glad to help, can you mark it as solved. Thanks!

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.