Endpoint Protection

 View Only
  • 1.  Blocking unauthorized WiFi networks

    Posted Aug 04, 2010 10:14 AM
    We have laptops out in the field that we want to prevent from accessing unauthorized wireless networks, like at McDonald's or Starbucks, or for that matter any WiFi network other than our company production wireless network.  Can the SEP clients be configured to block all wireless access except to our company SSID? 

    I am currently on 11.0.5002.333 on the SEPM and all clients. 


    Thanks. 


  • 2.  RE: Blocking unauthorized WiFi networks
    Best Answer

    Posted Aug 04, 2010 10:36 AM
    Check this video for Location Awareness It should help.

    https://www-secure.symantec.com/connect/videos/location-awareness

    Can the SEP clients be configured to block all wireless access except to our company SSID?  Yes 




  • 3.  RE: Blocking unauthorized WiFi networks

    Posted Aug 04, 2010 11:12 AM

    I don't think that is possible to block all wirless newtork and allow some.


    Title: 'How to block all Wireless traffic when an Ethernet interface is active using Symantec Endpoint Protection 11.x'
    Document ID: 2008052110185348
    > Web URL: http://service1.symantec.com/support/ent-security.nsf/docid/2008052110185348?Open&seg=ent




  • 4.  RE: Blocking unauthorized WiFi networks

    Posted Aug 04, 2010 11:25 AM
    Only the communication of SEP client with the SEPM will be taken care of with Location switching. For Internet access restriction you will have to configure the Firewall rules.


  • 5.  RE: Blocking unauthorized WiFi networks

    Posted Aug 04, 2010 12:49 PM

    So I need to create a location with a Wireless SSID criteria of my production wireless network name, for example "Test".  Then I create a basic default firewall policy for that location allowing them to connect to the internal network. 

    Then I create another location using the Wireless SSID criteria but this time I chose "If the client computer does NOT user one of the Wireless SSID's listed below", and enter Test.  And for this location I create another firewall policy that prevents them from getting to the internet. 

    But I also want to protect our laptops from other laptops that are also connected to the Starbucks or McDonald's SSID, not only ports 80 and 443 for internet but all access.  In fact I would rather the laptops not be able to connect to foreign SSID's at all.  What kind of firewall rules will I need to configure to accomplish this? 


  • 6.  RE: Blocking unauthorized WiFi networks

    Posted Aug 06, 2010 11:36 AM
    DO the Location awareness settings fro in office and out of office.

    Then just use a FW rule that DENY's ANY<>ANY for the out of office setting...