-F: a prefix indicating that the command belongs to the firewall management commands.
kesl-control --add-rule
This command adds a new network packet rule.
Command syntax
kesl-control [-F] --add-rule [--name <rule name>] [--action <action>] [--protocol <protocol>] [--direction <direction>] [--remote <remote address>[:<port range>]] [--local <local address>[:<port range>]] [--at <index>]
Arguments and keys
--name <rule name> is the name of the network packet rule.
--action <action> is the action to be performed on connections specified in network packet rule.
--protocol <protocol> is the type of data transfer protocol for which you want to monitor network activity.
--direction <direction> is the direction of the monitored network activity.
--remote <remote address>[:<port range>]: the network address of the remote device.
--local <local address>[:<port range>]: the network address of the device with Kaspersky Endpoint Security installed.
--at <index>: the number of the rule in the list of network packet rules. If the --at key is not specified or its value is larger than the number of rules in the list, the new rule is added to the end of the list.
Parameters that you do not specify values for in the command are set to their default values.
kesl-control --del-rule
This command deletes the network packet rule with the specified name or index in the list of rules.
Command syntax
kesl-control -F --del-rule --name <rule name>
kesl-control [-F] --del-rule --index <index>
Arguments and keys
--name <rule name> is the name of the network packet rule.
--index <index>: the number of the rule in the list of network packet rules.
kesl-control --move-rule
This command changes the execution priority of a network packet rule.
Command syntax
kesl-control [-F] --move-rule --name <rule name> --at <index>
kesl-control [-F] --move-rule --index <index> --at <index>
Arguments and keys
--name <rule name> is the name of the network packet rule.
--index < index >: the current number of the rule in the list of network packet rules.
--at < index >: the new number of the rule in the list of network packet rules.
kesl-control --add-zone
This command adds an address to a network zone.
Command syntax
kesl-control [-F] --add-zone --zone <zone> --address <address>
Arguments and keys
--zone <zone> is the predefined name of the network zone.
--address <address> is the network address or subnet.
kesl-control --del-zone
This command removes an address from a network zone.
Command syntax
kesl-control [-F] --del-zone --zone <zone> --address <address>
kesl-control [-F] --del-zone --zone <zone> --index <address index>
Arguments and keys
--zone <zone> is the predefined name of the network zone.
--address <address> is the network address or subnet.
--index <address index>: the number of the address in the network zone.
kesl-control -F --query
This command displays firewall rules created with Kaspersky Endpoint Security.
Command syntax
kesl-control -F --query