How to block Web access to client with the help of a firewall policy from Symantec Endpoint Protection Manager 12.1 in a Proxy Environment

Even though we have a block rule applied, user is able to browse websites, when the internet is accessed through a proxy.

Warning : Please test all policies in a test environment before deploying it in a production environment.

1. Login to Symantec Endpoint Protection Manager Console
2. Go to policies, Go to Firewall
3. Under "Tasks", click on "Add a Firewall Policy
4. "Give a name to the firewall policy and write a short description about the role played by the policy (relevant name recommended)
5. Make sure that box "for "Enable this Policy" is checked
6. Go to "Rules"
7. Ensure "Inherit Firewall Rules from Parent Group" is unchecked and click on "Add Rule"
8. Choose "Block connections" and click "Next"
9. Choose "Internet Explorer / Firefox / Google Crome / Opera"and click on "Next"
10. Click on "The following type of protocols on all ports" and select TCP
11. Click on "Next"
12. If you want log entries for the same, select "Yes"
13. The rule should be on top of the list with severity as Major
14. In this rule edit the "Host" column, select Local/Remote
15. In Remote add the IP address of the Proxy Server\
    • If you have more than one proxy server add all the address
16. Click on "Ok"
17. Assign the policy to a group.

Applies To

Windows Server 2003/2008, Windows XP/Vista/7 with Proxy Server