Configuring the statuses of networks

You can specify the statuses of networks to which your users' devices are connected (local network, public network, or trusted network). Firewall defines the settings of protecting your users' devices against network threats depending on the network statuses.

A network is specified by means of a range of IP addresses. If the IP address of a user's device is included into the range of IP addresses of a network, Firewall protects the device according to the status of this network. If the device's IP address is not included in any range of IP addresses specified on this page, Firewall determines the status of the device's network based on the network status in the device's operating system. All IP addresses other than those specified on this page and in the operating system of devices are considered IP addresses of public networks.

By default, three ranges of IP addresses are specified as local networks: 172.16.0.0/12, 192.168.0.0/16, and 10.0.0.0/8.

Example.

You remove all default networks and specify network 172.16.0.0/16 as a local network. A user's device has two network adapters that get IP addresses from the ranges 172.16.55.0/24 and 192.168.5.0/24, respectively. Both networks in the device's operating system are defined as public networks. Because IP addresses 172.16.55.0/24 are included into the range 172.16.0.0/16, the status of network 172.16.55.0/24 is taken from the defined settings and is a local network. Because the defined settings contain no suitable range for network 192.168.5.0/24, its status is taken from the device's operating system and is a public network.

To configure the statuses of networks:

  1. Open Kaspersky Endpoint Security Cloud Management Console.
  2. Select the Security managementSecurity profiles section.

    The Security profiles section contains a list of security profiles configured in Kaspersky Endpoint Security Cloud.

  3. In the list, select the security profile for the devices on which you want to configure the statuses of networks.
  4. Click the link with the profile name to open the security profile properties window.

    The security profile properties window displays settings available for all devices.

  5. In the Windows group, select the Security settings section.
  6. Click the Settings link below the Firewall is enabled toggle switch.

    The Firewall settings page opens.

  7. Click the Settings link in the Available networks section.

    The Available networks page opens.

  8. Do any of the following:
    • To specify the status of a new network:
      1. Click the Add button.

        The Network connection window opens.

      2. In the Name field, specify the name of the new network.
      3. In the Status drop-down list, select one of the following values:
        • Local networks.
          This status is assigned to networks whose users are trusted to gain access to files and printers on this computer (for example, a LAN or home network).
        • Public networks.
          This status is assigned to networks that are not protected by any anti-malware applications, firewalls, or filters (for example, for internet café networks). The users of computers connected to such a network are blocked by Firewall from gaining access to files and printers on this computer. Moreover, unauthorized users cannot obtain access to any information through shared folders and remote access to the desktop of this computer. Firewall filters the network activity of each application according to the network rules that are set for it.
        • Trusted networks.
          This status is assigned to safe networks in which the computer is not exposed to any attacks or unauthorized access attempts. For networks with this status, Firewall allows any network activity within the network.
      4. In the IP address field, specify the range of IP addresses of the network.
      5. Click OK to close the Network connection window.

      The added record appears in the list of networks in the Available networks window.

    • To modify a record in the list of networks:
      1. Select the check box next to the required record.
      2. Click the Edit button.

        The Network connection window opens. It contains details about the selected network.

      3. Make the necessary changes.
      4. Click OK to close the New record window.

      The modified record is displayed in the list of networks in the Available networks window.

    • To delete a record from the list of networks:
      1. Select the check box next to the required record.
      2. Click the Delete button.

      The deleted record disappears from the list of networks in the Available networks window.

  9. Click Save to save the changes.

The list of networks is updated.

After the security profile is applied, your users' devices are protected against network threats in accordance with the rules that match the specified network statuses.

Page top