jdeconto 0 Posted Wednesday at 06:51 PM Share Posted Wednesday at 06:51 PM Hey! I am having issues making a firewall policy apply to my machine via the Protect Cloud portal. Currently I have the policy applying to a test group that only contains my computer. All of the policies have the lightning bolt symbol selected to make sure that they trigger. I am trying to block all access, local and internet. My rules for the policy are: As well, Zone All Addresses: I must be missing something simple that is preventing the policy from applying. Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,694 Posted Wednesday at 08:08 PM Administrators Share Posted Wednesday at 08:08 PM First of all, you have posted in the ESET Products for Windows Servers forum but server products do not contain a firewall and ESET Endpoint Security is not intended for installation on servers. Please clarify. Quote Link to comment Share on other sites More sharing options...
jdeconto 0 Posted Wednesday at 08:16 PM Author Share Posted Wednesday at 08:16 PM Gaaaahhh, sorry I selected the wrong product, it is not my day today. This is for a client side machine not a server. Would you recommend I recreate this post in the correct forum? Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,694 Posted Wednesday at 08:56 PM Administrators Share Posted Wednesday at 08:56 PM Did you choose to replace the rules on clients? Did you toggle display of default rules and put the new rule on top? How did you test the rule for svchost.exe application? Quote Link to comment Share on other sites More sharing options...
jdeconto 0 Posted Wednesday at 09:01 PM Author Share Posted Wednesday at 09:01 PM The Replace for clients was selected by default. I did show built in rules and moved mine to the top. The svchost.exe application was added in by another tech as a test. I was originally just trying to block all access, regardless of application. Quote Link to comment Share on other sites More sharing options...
jdeconto 0 Posted Wednesday at 09:03 PM Author Share Posted Wednesday at 09:03 PM Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,694 Posted Wednesday at 09:12 PM Administrators Share Posted Wednesday at 09:12 PM I would remove svchost.exe from the rule and leave the application empty so that the rule is applied to any executable. However, you will need to remove the rule for Windows to work properly. Quote Link to comment Share on other sites More sharing options...
jdeconto 0 Posted Wednesday at 09:15 PM Author Share Posted Wednesday at 09:15 PM Okay, application has been removed. In regards to working correctly, would creating an additional rule allowing access for ports 80 and 443 be enough? I am trying to totally lock the machine out from the local network. Quote Link to comment Share on other sites More sharing options...
Administrators Marcos 4,694 Posted Wednesday at 09:45 PM Administrators Share Posted Wednesday at 09:45 PM Do you want to block completely everything, ie achieve the same effect as with disconnecting the network cable from the machine? Quote Link to comment Share on other sites More sharing options...
jdeconto 0 Posted Wednesday at 09:48 PM Author Share Posted Wednesday at 09:48 PM Yes. Eventually I want to be able to granularly allow access but at this time I am focusing on locking the computer completely out of the network. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.