Opapa

Hello Marcos, hello community... Can you please have a look on the scenario above and give me a hint how this can be managed in ESET PROTECT? Thanks again!

Hello Marcos, thank you for your response. I understand, that you can append further profiles, zones and rules in the following policies. Please have a look at this example: - I created two firewall policies. - The first policy ( Firewall – 10_BASIC) contains two firewall profiles (UNTRUSTED, INTERNAL), zones (Trusted Zone, IT-Administration-Zone) and a basic firewall ruleset. This policy is applied on all machines and replaces all prior settings (therefore set to replace). - The second policy (Firewall – 1001_Skype) does not contain additional firewall profiles or additional zones. It shall inherit firewall profiles and zones from the first policy and only adds two firewall rules. This policy is applied on all machines where Skype is allowed. It shall allow the usage of Skype only from trusted networks (Firewall profile: INTERNAL) - Unfortunately and probably “by design” the rule editor in the second policy does not show/know the firewall profiles and zones defined in the first policy (Firewall – 10_BASIC). I can only select “Any profile” in the rule and the IT-Administration-Zone is not available. Do you have an idea how this is solved? Thanks again!

Hello. I currently have one firewall policy containing the built-in system rules and my custom rules. This works and was okay in the past. Now I want to keep this "basic" firewall policy and append further policies with rules for certain applications. For example: Every device should get the "basic" firewall policy, but only Skype users shall have an additional policy with the Skype ruleset. Unfortunately when I create a second firewall policy and want to append the rules, the rule editor does not know the "zones" and "firewall profiles" I specified in the "basic" firewall rule. Can you please give me a hint to solve this? Thank you and regards, Bastian

Ok thx for your swift response... I assumed that at least some of the 120 clients should have updated itself in the meantime. So I will wait. But I think there is room for improvement regarding the auto-update feature...

Same issue (onPrem)... Updated to "ESET Protect 10" 7 days ago. Updated Management Agent on two devices manually; all other 120 clients are "waiting" since then without progress. Any further ideas? Thank you!