User Interaction Settings
Use these settings to determine which firewall features are available on the client for the end user to configure.
Symantec Endpoint Protection Managerthese settings apply to the location. In the cloud console, these settings apply to the group.
Client location where you configure this setting
Allow users to perform security test
Lets the users test the effectiveness of the client computer to outside network threats and viruses by scanning it. The
Test Network Securitymenu command opens the Symantec Security Check website.
Network and Host Exploit Mitigation>
View Network Activity>
Test Network Securitymenu command
Allow the following users to enable and disable the firewall
When the firewall is disabled
Specifies whether the firewall and the IPS ignore either all traffic or only inbound traffic.
Allow all traffic
Disables the firewall and the IPS so that both inbound traffic and outbound traffic can pass through the firewall unrestricted.
Use this option if you need to troubleshoot a problem on the device.
Allow all outbound traffic onlyDisables firewall and the IPS for outbound traffic only so that users can access the network. Inbound traffic must still pass through the firewall and the IPS.
For example, use this option when users connect to the corporate network from a hotel or hot spot. For example, when employees use their corporate laptops away from the office, they can only connect to external websites through their corporate VPN. However, employees may need to first enter information on an external webpage before they can start their VPN. This option allows employees to access the webpage but block inbound traffic.
Network and Host Exploitation>
Enable Network Threat Protection
Display a message on the device when the client blocks an application
Displays a standard message or a custom message on the device when the client blocks an application. You specify which applications to block on the firewall rules list.
An example of a standard message might be:
If you configure the client to block all traffic, these notifications appear frequently. If you configure the client to allow all traffic, these notifications do not appear.