Endpoint Protection

 View Only
  • 1.  Off the Network location settings

    Posted May 20, 2010 09:37 AM
    Hi Guys, I have an interesting issue I am trying to work around with locations. We currently have about 5 sites that are all setup with locations vi the subnet they are in. these all have different policies for each site. I want to creat a new location the is a "Off the network" location which locks down the client with the firewall and only allows them to connect to VPN. I have setup the firewall and tested it and it is working fine. My issue is the best way to make that policy come in to effect. If you use any of the DNS lookup options and you have a WAN outage and your clients cant see a DNS server it puts them off the network. If you use the WINS or DNS server address's Users with static IP addresses will not get the change of policy. If you use management server connection and you have a WAN outage and your clients cant see a managment server it puts them off the network. I hope you can see the issue but i thought someone must have overcome this before. Thanks in advance for you help!


  • 2.  RE: Off the Network location settings

    Posted May 20, 2010 09:48 AM


  • 3.  RE: Off the Network location settings

    Posted May 20, 2010 10:12 AM
    Thanks for that but its not the logic thats the problem its the fact that I can't see to workout how to apply a lockdown policy without having the a single point of failure


  • 4.  RE: Off the Network location settings

    Posted May 20, 2010 10:34 AM
    if you know what gets changed or does not change; we can have it enabled 
    http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2009062410243548