search cancel

How to block Network Printing in Endpoint Protection (SEPM)

book

Article ID: 202628

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

How to a block Network Printing when using Symantec Endpoint Protection Manager (SEPM)?

Environment

14.x

Resolution

  1. In the SEPM console, browse under Policies > Firewall > and double-click (or select and choose edit) on the active Firewall Policy.
  2. Click on Rules and click the Add button.
  3. Provide a name for the policy such as Block Network Printing and click Next.
  4. Select Block connections and click Next.
  5. Leave the radial selection on All Applications and click next.
  6. Leave the radial selection on all computers or select which group of computers you wish the rule to apply to and click Next.
  7. Select the radial for "only the connections selected below" and check "network neighborhood sharing" and "network neighborhood browsing".
  8. Click Next, choose whether to log or not, and click Finish.
  9. Move the new rule to near the top of the list of rules.

Additional Information

This rule blocks discovery of network printers. It may not block printing to a device that is already known to the system.

If you are trying to block printing to printers that use Internet Printing Protocol (IPP) you can do this with a rule blocking port 80 (TCP and UDP)  on private networks.  This should be carefully tested before implementation, however, as port 80 is used for many services.

Attachments