Video Screencast Help
Search Video Help Close Back
to help

IPv6 rules

Created: 21 Dec 2012 | Updated: 27 Dec 2012 | 2 comments
Jeff123's picture
Jeff123
0 0 Votes
Login to vote

How do I put an IPv6 address or address range into a firewall rule on small business endpoint software?  I have a small business essentials 2011 server and 5 client computers running Windows 7.  The endpoint server software and endpoint cllient software There are various kinds of IPv6 blockages reported from our internal traffic.  I'd like to allow this for internal traffic and not external traffic but there appears to be no way to do this when internal IPv6 addresses are involved. 

Discussion Filed Under:
, , ,

Comments 2 CommentsJump to latest comment

Ashish-Sharma's picture
Ashish-Sharma
IPv6 rules - Comment:22 Dec 2012 : Link

Hi,

Check this 

 

Symantec Endpoint Protection blocking IPv6 communication with allow application rule

Article:TECH169685  |  Created: 2011-09-15  |  Updated: 2012-02-22  |  Article URL http://www.symantec.com/docs/TECH169685
 

Or check 

Change the SEP firewall rules for IPv6 traffic to from "Block" to "Allow".

 

 

Thanks In Advance

Ashish Sharma

SEPM Knowledgebase Documents  

 

0
Login to vote
Mithun Sanghavi's picture
Mithun Sanghavi Symantec Employee Technical Support Accredited
IPv6 rules - Comment:27 Dec 2012 : Link

Hello,

What version of SEP 12.1 are you running?

The FW rule does not allow user to specify ipv6 address.

Regarding IPv6 support, need to distiguish between the use in policies and client settings and the use in the Symantec Endpoint Protection (SEP) architecture in general.

In Symantec Endpoint Protection (SEP) 11.x, IPv6 could only be used as a general ethernet protocol type in firewall rules. So IPv6 network traffic could be blocked or allowed completely in a rule.

SEP 12.1 has added support for IPV6 in the traffic.  In SEP 12.1 the firewall and SEP engine have the ability to decode and block the traffic based on  the firewall policy or based on detected attacks within the IPv6 traffic.  The protection offered on IPv6 traffic in SEP 12.1 is as good as the protection offered on IPv4 traffic. Logs will show IPv6 addresses as well.

Check these Articles:

Default Symantec Endpoint Protection 12.1 RU1 Firewall Policy explanation

http://www.symantec.com/docs/TECH180569

IPv6 support in Symantec Endpoint Protection 12.1

http://www.symantec.com/docs/TECH174897

Hope that helps!!

Mithun Sanghavi
Symantec Technical Support Engineer, SEP
MIM | MCSA | MCTS | STS | ITIL v3

Twitter: @mithun_sanghavi

Don't forget to mark your thread as 'SOLVED' with the answer that best helps you.<&a

0
Login to vote