Video Screencast Help
Give us your opinion and win with Symantec! Please help us by taking this survey to tell us about your experience with Symantec Connect, so that we can continue to grow and improve.  Take the survey.

what should be blocked for user who are working as mobile user,

Created: 09 Jul 2013 • Updated: 21 Jul 2013 | 7 comments
roh234's picture
This issue has been solved. See solution.

i am planning to use location awarness feature.but i am confused that what should i blocked for user when they are on remote location or wroking from home

i can do about webfiltring but what are other service that should be blocked when the user is not in my corporate network

Regards

Rohit

Operating Systems:

Comments 7 CommentsJump to latest comment

pete_4u2002's picture

the remote user have a difficulty of updating the definition if off from corporate network, you may thnk of enabling LU once move out of network.

How to configure mobile computers to automatically download virus definitions when disconnected from the SEPM

http://www.symantec.com/business/support/index?page=content&id=TECH104571&locale=en_US

restricting user limits on configuration can be achieved using location awareness and it has to be decided by you.

pete_4u2002's picture

you can configure firewall rules based on location. similarly ADC policy as well.

roh234's picture

well i am confused what should i blocked,like what are best prastice

pete_4u2002's picture

its your requirement, i haven't seen any rticle mentioning the blocking.

Brɨan's picture

Ideally, you want to block everything and only allow what is needed.

It may depend on what your company policy allows but I would start by allowing 80, 443, and VPN while blocking everything else.

What else do they need while working from home? Only you or they could answer that. There is no specific best practice for this since each company is different.

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

SOLUTION
sachin 2's picture

With the help of Location awareness policy, you can enable live update option for download definition from symantec site. Also you can block below rule

1) Restrict for file or regestry modification access.

2) Block host file modification.

3) Block download file from internet.