Adding a new firewall rule
You can create new firewall rules using either of the following methods:
A blank rule allows all traffic. See:
Add Firewall Rulewizard
If you add rules with the
Add Firewall Rulewizard, ensure that you configure the rule. The wizard does not configure new rules with multiple criteria. See;
You should specify both the inbound and the outbound traffic in the rule whenever possible. You do not need to create inbound rules for traffic such as HTTP. The
Symantec Endpoint Protectionclient uses stateful inspection for TCP traffic. Therefore, it does not need a rule to filter the return traffic that the clients initiate.
When you create a new firewall rule, it is automatically enabled. You can disable a firewall rule if you need to allow specific access to a computer or application. The rule is disabled for all inherited policies.
The rule is also disabled for the all locations if it is a shared policy and only one location if it is a location-specific policy.
Rules must be enabled for the firewall to process them.
- To add a new firewall rule
- To add a new blank firewall rule, in the console, open a Firewall policy.
- On theFirewall Policypage, underWindows SettingsorMac Settings, clickRules.For versions earlier than 14.2, there is no option forMac Settings.
- On theRulestab, under theRuleslist, clickAdd Blank Rule.
- Optionally, you can change the firewall rule criteria as needed.
- If you are done with the configuration of the rule, clickOK.
- To add a firewall rule using a wizard, in the console, open a Firewall policy.
- On theFirewall Policypage, underWindows SettingsorMac Settings, clickRules.On theRulestab, under theRuleslist, clickAdd Rule.
- Fill out the options on each screen, and then clickNext.
- ClickFinish.Optionally, you can change the firewall rule criteria as needed.