Jump to content

policy


Aim2018
 Share

Recommended Posts

Hi,
Let us say I have few  policies applied  on a dynamic windows desktop group . 
for example : a firewall policy denying all ICMP traffic 


Now  I have  a static group  called test , there is a policy for icmp allow  from a specific remote address  

In this case , what will be the winning policy  

Thanks 

Link to comment
Share on other sites

You can use your policy for your windows desktops as your Global Policy and in your static group test this will be your child policy. 

As long as your global policy ICMP rule is not set to "force" or "apply" then on your child policy you can "force" or "apply" and this will override global for this ICMP setting. 

hxxp://help.eset.com/era_admin/65/en-US/admin_pol_how_policies_are_applied.htm

Link to comment
Share on other sites

  • Administrators

It depends on how you set particular policy settings to be handled in case the same setting (in this case fw rules) is also set by another policy or client.

image.png

Link to comment
Share on other sites

  • Most Valued Members
1 hour ago, tmuster2k said:

You can use your policy for your windows desktops as your Global Policy and in your static group test this will be your child policy. 

As long as your global policy ICMP rule is not set to "force" or "apply" then on your child policy you can "force" or "apply" and this will override global for this ICMP setting. 

hxxp://help.eset.com/era_admin/65/en-US/admin_pol_how_policies_are_applied.htm

Link is not found , 404 :(

Link to comment
Share on other sites

2 hours ago, Marcos said:

It depends on how you set particular policy settings to be handled in case the same setting (in this case fw rules) is also set by another policy or client.

image.png

 

3.thumb.JPG.3dcf8ef7a0ea3a3d9a23986656bca14c.JPG

What does it mean Append at left side  and Replace  at right side 

Thanks

 

Link to comment
Share on other sites

  • ESET Staff

That defines relationship with such list set from another policy and defined locally. 

You can for example replace a list defined in a master policy by a list from a specific policy, and then define that local-define entries will be prepended (will be added to the top of the list, as the firewall rules are evaluated top-down in the order). 

Link to comment
Share on other sites

  • ESET Staff

Local defined entries means, entries set within the local UI of the application on each of the computers. That means you access advanced settings of ESET Endpoint Security (press F5) and define local rules there. 

Link to comment
Share on other sites

Hi,

As long as we are not defining any local policies , does it matter  if we set the right side "append ","replace" ,"prepend"  ?

Correct me If i am wrong 

Thanks 

 

Edited by Aim2018
edit
Link to comment
Share on other sites

Hi,

Lets say we have  firewall policy already applied like below 

1.thumb.png.2b75284210476aacb00cbc8c3f89be59.png

And  a second firewall  policy   like below 

2.thumb.png.86eac079c8d56863b2da65ebab3c482a.png

 

At the  end   what will be the effect of the policy ?

 

Thanks 

Link to comment
Share on other sites

  • ESET Staff

The second policy will overwrite all of the settings of the first one.  But what also matters is to what object is the policy assigned to (static group in hierarchy, dynamic group or individual computers).

Link to comment
Share on other sites

Hi,

In the first policy  there is no rule for icmp  

In  second policy  there is only icmp policy 

"The second policy will overwrite all of the settings of the first one. " 

So  all the  policy like deny "cscript " in the first policy will be replaced  ? 

"Replace" means does it remove  even if there is no relation between the rules ? 

for example  , deny cscript  and allow icmp are totally different rules 

 

Thanks 

 

 

Link to comment
Share on other sites

  • Administrators

Yes, "Replace" will replace / overwrite the rules completely. If you want to merge fw rules from both policies and want the "Policy 1" fw rules to take precedence over the "Policy 2" rules, use "Append" instead of "Replace" for the fw rules in "Policy 2".

Link to comment
Share on other sites

  • 2 weeks later...
Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...