Issue/Introduction:
How to block Web access to client with the help of a firewall policy from Symantec Endpoint Protection Manager 12.1 in a Proxy Environment
Even though we have a block rule applied, user is able to browse websites, when the internet is accessed through a proxy.
Resolution:
Warning : Please test all policies in a test environment before deploying it in a production environment.
- Login to Symantec Endpoint Protection Manager Console
- Go to policies, Go to Firewall
- Under "Tasks", click on "Add a Firewall Policy
- "Give a name to the firewall policy and write a short description about the role played by the policy (relevant name recommended)
- Make sure that box "for "Enable this Policy" is checked
- Go to "Rules"
- Ensure "Inherit Firewall Rules from Parent Group" is unchecked and click on "Add Rule"
- Choose "Block connections" and click "Next"
- Choose "Internet Explorer / Firefox / Google Crome / Opera"and click on "Next"
- Click on "The following type of protocols on all ports" and select TCP
- Click on "Next"
- If you want log entries for the same, select "Yes"
- The rule should be on top of the list with severity as Major
- In this rule edit the "Host" column, select Local/Remote
- In Remote add the IP address of the Proxy Server\
- If you have more than one proxy server add all the address
- Click on "Ok"
- Assign the policy to a group.
Applies To
Windows Server 2003/2008, Windows XP/Vista/7 with Proxy Server