Video Screencast Help
Search Video Help Close Back
to help
New in the Rewards Catalog: Vouchers for "Symantec Technical Specialist" and "Symantec Certified Specialist" exams.

Firewall Should Have Packet Filter Options, Firewall Work On Server By Default

Created: 04 Jun 2009 | 2 comments
JStellato's picture
JStellato
3 Agree
2 Disagree
+1 5 Votes
Login to vote

Since SEP is no longer SAV the scope has been completely changed.  Agnitum, Zone Alarm and many more firewall providers include packet filtering by default with simple configuration options.  The firewall on SEP has been largely unusable, due to incompatabilities with Servers and problems on domains.  I tihnk it's time that we have a full Endpoint Security product by allowing us to actively monitor and configure what programs are reaching out on each individual computer.  Maybe it is listening by default, much like the tamper protection (but easier to use) giving us a report with, "Allow, Allow Once, Block" options.  This could potentially keep us from purchasing additional equipment to block P2P and rougue programs that are eating bandwidth...i.e. Blinko TV etc.

While I'm at it, the firewall really should work on Servers, yes even domain controllers.  There are only so many ports used in communicating from client to server, it doesn't mean that they should be without protection.  The firewall should actively monitor and send a report to an admin as well.  This could be all part of the packet filter/firewall solution.  How many times have we bought a new version of a symantec security program to only install portions of it, because what we paid for isn't supported...makes shares on x64 systems dissapear... etc.

Thank you

Joseph Stellato

idea Filed Under:
, , , , , ,

Comments

JimW's picture
09
Jun
2009
0 Votes 0
Login to vote
JimW

firewall

Joseph,

Thank you for the feedback. Lets see if others feel the way you do. During our beta test of SEP 11.0 we received tons of feedback to turn of the packet filtering by default since it caused too much logging. Since it has been quite some time since that release perhaps the needs have changed.

Regards,

JimW

Jim Waggoner Director Product Management, Symantec Endpoint Protection, Enterprise Security Group, Symantec

mckinnonk's picture
17
Feb
2010
0 Votes 0
Login to vote
mckinnonk

I would very much like to

I would very much like to have true firewall control on the client.  I should be able to globally block specific ports or applications.  I like Joe's suggestion of "allow, allow once, or block".  I have to install a competitor product on my own computer, because I need that addtional security that SEP does not offer.

Technical Support

Symantec.com

Store

Community Stats

Total Content Items
Members
258,794