Is allowing ip in trusted zone safe?

[tuan2tech 0]

Hi you

My purpose is just to allow internal PING to check the connection. I have added vlans in the trusted zone. Is this safe? When other machines on the LAN have a local attack, can ESET still detect it?

[Marcos 5,273]

By adding IP addresses to the trusted zone you allow file sharing and some other services in the network. For instance, if you add an IP address of an infected machine that doesn't have ESET installed, a possible rasomware running on the machine could encrypt files in other machines' shares.

[tuan2tech 0]

So I just want to allow PING, what should I do?

[Marcos 5,273]

Create a custom permissive rule for outbound ICMP communication with ICMP type 8 (echo) and the remote IP addresses outside the trusted zone that should be able to ping the machine. Put this custom rule on top of the default firewall rules:

[tuan2tech 0]

I created rules as instructed but still can't PING to the destination

 

[Marcos 5,273]

The rule has priority 65, ie. it was not moved on top of the built-in rules. Should the communication be still blocked, you should be able to resolve it though this wizard:

[tuan2tech 0]

How to set rules to priority number 1, I deploy this policy to many machines at once

[Marcos 5,273]

1. Toggle display of built-in rules
2. Move the rule on top
3. Apply the policy setting using the method "replace" or "prepend" so that these rules take precedence over the existing rules on the clients.

[tuan2tech 0]

Hi @Marcos

I downloaded the agent file on the eset homepage and installed it on the window server 2012R2 and got the error as shown below.