About firewall settings for the Mac client

The firewall settings that are included in the
Symantec Endpoint Protection
client for Mac are as follows:
  • Firewall smart rules
  • Custom firewall rules
These settings are only configurable by the
Symantec Endpoint Protection Manager
administrator. The firewall is only available to managed clients.
The firewall is included with the
Symantec Endpoint Protection
client for Mac as of version 14.2.
Firewall settings
Setting type
Description
Firewall smart rules
Firewall smart rules provide protection to prevent common types of attack. They also allow traffic on specific protocols when the Mac makes the initial request on that protocol.
Protection settings include:
  • Portscan detection
  • Denial of service detection
  • Anti-MAC spoofing
  • Automatically block an attacker's IP address
Traffic protocols include:
  • Smart DHCP
  • Smart DNS
The
Symantec Endpoint Protection
firewall for Mac does not integrate with the operating system's built-in firewall. Instead, it runs in parallel. The operating system firewall inspects at the Application layer, while the
Symantec Endpoint Protection
firewall inspects at lower levels (Network and Transport).
The
Symantec Endpoint Protection
firewall for Mac does not offer peer-to-peer blocking rules, though you could create these in part through custom firewall rules.
Custom firewall rules
Custom firewall rules allow the administrator to create the rules that involve various attributes of the network traffic.
More information