Applies to Kaspersky PURE R2
Firewall analyzes the activity of each application running on your computer. Depending on the threat rating, every application is included to one of the following groups:
- Trusted. Trusted applications are applications with digital signatures of trusted vendors and applications signatures of those are included to the trusted applications database. Activities of such applications are monitored by Proactive Defense and File Anti-Virus.
Applications of that group are allowed to perform any network activity irrespectively of the network status.
- Low Restricted. Low restricted applications are applications which are without digital signatures of trusted vendors and which are not included to the trusted applications database. Nevertheless, the low risk rating is assigned to such applications.
Applications of that group are allowed to perform any network activity in non-interactive mode. If you are using the interactive mode, a notification will be displayed on the screen using which you can allow or block a connection, or create an application rule using the Wizard.
- High Restricted. High restricted applications are applications without digital signatures and which are not included to the trusted applications database. The high risk rating is assigned to such applications.
Applications of that group are not allowed to perform network activity in non-interactive mode. If you are using the interactive mode, a notification will be displayed on the screen using which you can allow or block a connection, or create an application rule using the Wizard.
- Untrusted. Untrusted applications are applications without digital signatures and which are not included to the trusted applications database. Very high risk rating is assigned to such applications.
Any network activity is prohibited for the applications of that group.
You can modify rules for a whole group.
Custom rules for individual applications have a higher priority than the rules inherited from a group. If you create an allowed rule for a whole group of applications and a prohibited rule for a certain application from this group, then any network activity of a certain application will be restricted accortding to a rule for this application, because it has a higher priority level.
In order to change rules for a group af applications, perform the following actions:
on the upper right hand corner of the window, click Settings
on the upper part of the Settings window, select Protection
on the left hand part of the Settings window, select the Firewall component
make sure that the Firewall component is enabled (the Enable Firewall box is checked)
- in the Rules for application statuses section click on the Configure rules... button
- on the Firewall settings window click + in the Network column
- Select the required application group (Trusted, Low Restricted, High Restricted, Untrusted)
- Move the mouse cursor on the action icon of the created rule of the required network (Trusted, Local, Public)
- right-click the action icon Allow, Deny or Prompt for action
- on the drop-down list, select the required action you want to change to (Allow, Deny, Prompt for action)
- on the Firewall settings window, click the OK button
- on the Settings window, click OK
- close the main application window.
