search cancel

How to block Network Printing in Endpoint Protection (SEPM)


Article ID: 202628


Updated On:


Endpoint Protection


How to a block Network Printing when using Symantec Endpoint Protection Manager (SEPM)?




  1. In the SEPM console, browse under Policies > Firewall > and double-click (or select and choose edit) on the active Firewall Policy.
  2. Click on Rules and click the Add button.
  3. Provide a name for the policy such as Block Network Printing and click Next.
  4. Select Block connections and click Next.
  5. Leave the radial selection on All Applications and click next.
  6. Leave the radial selection on all computers or select which group of computers you wish the rule to apply to and click Next.
  7. Select the radial for "only the connections selected below" and check "network neighborhood sharing" and "network neighborhood browsing".
  8. Click Next, choose whether to log or not, and click Finish.
  9. Move the new rule to near the top of the list of rules.

Additional Information

This rule blocks discovery of network printers. It may not block printing to a device that is already known to the system.

If you are trying to block printing to printers that use Internet Printing Protocol (IPP) you can do this with a rule blocking port 80 (TCP and UDP)  on private networks.  This should be carefully tested before implementation, however, as port 80 is used for many services.