kapela86 10 Posted December 4, 2018 Share Posted December 4, 2018 I'm thinking about changing Endpoint Security firewall profile on every client PC in our network to Public. This way we could avoid any viruses that spread to other computers like WannaCry. We use Win 7, 8.1 & 10 Pro and they are connected to Active Directory and ERA Server. Does anyone use similar setup in their environment? Will there be any issues with this setup regarding Active Directory or ERA? I know that Samba/RDS/ICMP will be blocked by default on public network but I can make exceptions for them if needed. Link to comment Share on other sites More sharing options...
Administrators Marcos 5,074 Posted December 4, 2018 Administrators Share Posted December 4, 2018 It is not a good idea to set the network zone to public. Even if you don't need the machines to see each other and share files, I wouldn't do that. Endpoint v7 contains the Network attack protection module which provides protection from exploits exploiting vulnerabilities in network protocols. Link to comment Share on other sites More sharing options...
kapela86 10 Posted December 4, 2018 Author Share Posted December 4, 2018 You didn't state WHY it's not a good idea. Link to comment Share on other sites More sharing options...
Administrators Marcos 5,074 Posted December 4, 2018 Administrators Share Posted December 4, 2018 You would lose sharing among the computers in LAN and all the following communications would be blocked as well unless allowed by custom rules: Link to comment Share on other sites More sharing options...
Recommended Posts