SEP Firewall 2 questions
Updated: 21 May 2010 | 5 comments
First Question. When you install the SEP firewall its allowing any Service /application to go anywhere, which is not desired even though i have created my firewall poilicy but it seems to bypass it and all the application are granted outside access. for example there is no firewall policy which allow any IIS to be running on client computers but still when you install the IIS it automatically open 80 port and anyone can connect to it even though my last entry says block every incoming ports which are not defined in my rules....... any help ?
secound question is on this post
www-secure.symantec.com/connect/forums/sep11-and-cisco-vpn-quotare-you-therequot-feature
discussion Filed Under:
Comments
Are these standalone clients
Are these standalone clients or managed by SEPM?
If managed by SEPM, verify that the firewall policy you created is being applied to the client machine.
I have installed the client
I have installed the client as Unmanaged and then used the sylink droper to make them managed.
i can confirm that the client is getting the policies by looking at network activity and applied firewall rules.
Re
Check also if the policy is activated and applied to the target groups.
Hi Paul , yes teh policy is
Hi Paul , yes teh policy is enabled and applied to the group :-) thats how i can see that my rules are applied to the client
i have all enable rule in the start and in the last disable rule in the end is this fine or do i have to opposite it by all disable rule in the start and allow rule after that...
sorry i m new with SEP firewall
Screenshot
Can you post the screenshot of your firewall policy.
Make sure the client is updating the policy choose one client for a testing purpose and check if policy changes are getting applied.
Make sure the clients are not in Client Control they should be either in Server Control or Mixed control.
VMWARE-- SEP 12.1 vs McAfee vs Trend Micro
Would you like to reply?
Login or Register to post your comment.