User Interaction Settings

Use these settings to determine which firewall features are available on the client for the end user to configure.
In
Symantec Endpoint Protection Manager
these settings apply to the location. In the cloud console, these settings apply to the group.
Firewall settings that the user can configure on the client
Option
Description
Client location where you configure this setting
Allow users to perform security test
Lets the users test the effectiveness of the client computer to outside network threats and viruses by scanning it. The
Test Network Security
menu command opens the Symantec Security Check website.
Status
>
Network and Host Exploit Mitigation
>
Options
>
View Network Activity
>
Tools
>
Test Network Security
menu command
Allow the following users to enable and disable the firewall
  • Windows administrators only
    or
    All users
    Specifies which types of users can enable or disable the firewall on the client.
When the firewall is disabled
Specifies whether the firewall and the IPS ignore either all traffic or only inbound traffic.
Allow all traffic
Disables the firewall and the IPS so that both inbound traffic and outbound traffic can pass through the firewall unrestricted.
Use this option if you need to troubleshoot a problem on the device.
Allow all outbound traffic only
Disables firewall and the IPS for outbound traffic only so that users can access the network. Inbound traffic must still pass through the firewall and the IPS.
For example, use this option when users connect to the corporate network from a hotel or hot spot. For example, when employees use their corporate laptops away from the office, they can only connect to external websites through their corporate VPN. However, employees may need to first enter information on an external webpage before they can start their VPN. This option allows employees to access the webpage but block inbound traffic.
Network and Host Exploitation
>
Options
>
Disable
/
Enable Network Threat Protection
Display a message on the device when the client blocks an application
Displays a standard message or a custom message on the device when the client blocks an application. You specify which applications to block on the firewall rules list.
An example of a standard message might be:
Traffic has been blocked from this application:
Application name
If you configure the client to block all traffic, these notifications appear frequently. If you configure the client to allow all traffic, these notifications do not appear.