Setting >>

	Useful references
	How does Firewall function in Kaspersky Internet Security 2011? How to create a packet rule in Kaspersky Internet Security 2011? How to create a network rule for applications in Kaspersky Internet Security 2011? Interactive and automatic protection modes in Kaspersky Internet Security 2011 How to open the main application window of Kaspersky Internet Security 2011? What is Proactive Defence in Kaspersky Lab 2011 products? What does File Anti-Virus in Kaspersky Anti-Virus/Kaspersky Internet Security do?

Firewall analyzes the activity of each application running on your computer. Depending on the threat rating, every application is included to one of the following groups:

• Trusted. Trusted applications are applications with digital signatures of trusted vendors and applications signatures of those are included to the trusted applications database. Activities of such applications are monitored by Proactive Defense and File Anti-Virus.

Applications of that group are allowed to perform any network activity irrespectively of the network status.

• Low Restricted. Low restricted applications are applications which are without digital signatures of trusted vendors and which are not included to the trusted applications database. Nevertheless, the low risk rating is assigned to such applications.

Applications of that group are allowed to perform any network activity in non-interactive mode. If you are using the interactive mode, a notification will be displayed on the screen using which you can allow or block a connection, or create an application rule using the Wizard.

• High Restricted. High restricted applications are applications without digital signatures and which are not included to the trusted applications database. The high risk rating is assigned to such applications.

Applications of that group are not allowed to perform network activity in non-interactive mode. If you are using the interactive mode, a notification will be displayed on the screen using which you can allow or block a connection, or create an application rule using the Wizard.

• Untrusted. Untrusted applications are applications without digital signatures and which are not included to the trusted applications database. Very high risk rating is assigned to such applications.

Any network activity is prohibited for the applications of that group.

You can modify rules for a whole group.

Custom rules for individual applications have a higher priority than the rules inherited from a group. If you create an allowed rule for a whole group of applications and a prohibited rule for a certain application from this group, then any network activity of a certain application will be restricted accortding to a rule for this application, because it has a higher priority level.

In order to change rules for a group af applications, perform the following actions:

1. open the main application window
2. in the left part of the main application window, select Protection Center
3. in the right upper corner of the main application window, click the Settings link
4. in the left part of the Settings window, select the Firewall component
5. in the right part of the Settings window, window make sure that Firewall is enabled (the Enable Firewall box is checked)
6. in the right part of the Settings window, click the Settings button
7. in the Firewall window, go to the Rules for applications tab
8. select the required application group (Trusted, Low Restricted, High Restricted, Untrusted)
9. move the mouse cursor on the action icon of the created rule of the required network (Trusted, Local, Public)
10. right-click the action icon Allow, Block or Prompt for action
11. in the context menu select the required action you want to change to (Allow, Block, Prompt for action)
12. click the OK button in the Firewall window
13. click the OK button in  the Settings window
14. close the main application window.