Managing firewall rules

Firewall rules control how the firewall protects computers from malicious incoming traffic and applications. The firewall checks all incoming packets and outgoing packets against the rules that you enable. It allows or blocks the packets based on the conditions that you specify in the firewall rule.
Symantec Endpoint Protection
installs with a default firewall policy that contains default rules. When you create a new firewall policy,
Symantec Endpoint Protection
provides default firewall rules. You can modify any of the default rules or create new firewall rules if your administrator permits it, or if your client is unmanaged.
You must have at least one rule in a policy. But you can have as many rules as you need. You can enable or disable rules as needed. For example, you might want to disable a rule to perform troubleshooting and enable it when you are done.
The following table describes what you need to know to manage firewall rules.
Managing firewall rules
Learn how firewall rules work and what makes up a firewall rule
Before you modify the firewall rules, you should understand the following information about how firewall rules work:
Add a new firewall rule
You can perform the following tasks to manage firewall rules:
  • Add new firewall rules through the console using several methods.
    One method lets you add a blank rule that has default settings. The other method offers a wizard that guides you through creating a new rule.
  • Customize a rule by changing any of the firewall rule criteria.
  • Export and import firewall rules from another firewall policy.
  • Copy and paste firewall rules.
    You can save time creating a new firewall rule by copying an existing rule that is similar to the rule that you want to create. Then you can modify the copied rule to meet your needs.
Customize a firewall rule
After you create a new rule, or if you want to customize a default rule, you can modify any of the firewall rule criteria.