Manikandan R 0 Posted April 4, 2019 Posted April 4, 2019 Hi, I need to block Local network and Remote Network IP ranges. Through " 7.0" and client Eset Endpoint security 7.0. i already tried existing policy network protection - firewall - advanced - rules - both direction deny. not working.
Administrators Marcos 5,450 Posted April 4, 2019 Administrators Posted April 4, 2019 Do not specify both local and remote ports and a time since the logical AND is applied and both conditions won't be met at a time.
Manikandan R 0 Posted April 6, 2019 Author Posted April 6, 2019 Hi, could you please provide to me the settings and steps.
Administrators Marcos 5,450 Posted April 6, 2019 Administrators Posted April 6, 2019 Edit the rule that has both the local and remote IP addresses same. Use only local IP addresses if you want to block any communication on these ports from outside.
Manikandan R 0 Posted April 6, 2019 Author Posted April 6, 2019 Yes. i tried not blocking, after applied this policy even possible to take remote mentioned ip system.
itman 1,801 Posted April 6, 2019 Posted April 6, 2019 (edited) First question is do you have the Firewall set to "Interactive" or "Policy" mode? As far as I am aware of only one Eset firewall profile can be active at any given time. Therefore, the "IP blocking" rule will only apply if the "Internal Network" profile is active. If your goal is to block all inbound/outbound traffic regardless of origin, remove all entries in both Local and Remote port/IP address sections. Also note that any inbound/outbound network traffic that matches any prior allow rules will be allowed regardless of origin. If any of the local subnet address you have specified access any of the ports specified in your existing allow rules, that traffic will be allowed. Remember Eset firewall rules are executed from top to bottom in the rule set. Edited April 6, 2019 by itman
Recommended Posts