How can you tell if you've already connected to an IP if that IP cannot send any information to you?
A website for example requires you to send information to that page requesting to get the files to view, it then sends you the files. Same goes with pinging. You need to learn how the handshake works in networking.

have you seen access list in cisco routers.  It can be done oneway.

Hi this can be done via GPO, but if you are on a domain, this will be the authentication type. With cisco, which type of protocol are you blocking?

Yes, you can do it with Cisco but...where are you planning on doing that? Which software or hardware will you be using?

Can I do it with SEP Firewall ?

hi,
consider machine A and machine B.

create a group, apply firewall rule. Place machine A in this group/

The outbound is allow anytime, however the destination ip (say machine B) should have firewall rule to accept any traffic to be processed from machine A.

in the host select the machine B and action as block and host as machine B's ip address and the service you want to block service (like tcp/udp/icmp ports).

Pete!

Not sure I understand your question completely but here's a try to solve the issue...

If your aim is to allow traffic from all hosts to one host and also allowing replies you could do the following:

Rule name - Application - remote host B - time - remote port tcp 0-65535 outgoing, upd 0-65535 outgoing, stateful udp - adapter - screensaver - Allow - logging

The above example will allow all tcp and udp traffic from any host to host B and allowing replies back to the initiating host. If you need other services enabled, modify the service field accordingly.

BR,
Tuomas

I see your point sir, but pls create a test group for this.

1. Create a policy for Group A
2. Edit the policy, then create a rule to Log ICMP Ping reply (0). (Allow first as action)
3. Assign this policy to a seperate client.
4. Then if you confirm that it is Logging.
5. Then select to Block it.
6. Re-assign or re-apply policy of A.