1. In the Kaspersky Security Center Administration Console tree, select the Policies folder.
2. Select the necessary policy and double-click to open the policy properties.
3. In the policy window, select Network activity control → Network Threat Protection settings and click Settings.
4. In the window that opens, select the Network Threat Protection check box.
5. On the General tab, enable the Block mode.
6. Select the Block attacking devices for check box and specify the blocking duration.
7. Save your changes.

To configure the blocking of untrusted network sessions for the Behavior Detection component in policy properties:

1. In the Kaspersky Security Center Administration Console tree, select the Policies folder.
2. Select the necessary policy and double-click to open the policy properties.
3. In the policy window, select Real-Time Computer Protection → Behavior Detection and click Settings.
4. In the window that opens, select the Behavior Detection check box.
5. Go to the Protection of shared folders tab and select the Protect shared folders check box.
6. Select Block connection for and specify the blocking duration.
7. If necessary, specify the protection scopes and exclusions by IP address and mask.
8. Save your changes.

1. In the main window of the Web Console, select Assets (Devices) → Policies & profiles.
2. Click the name of the Kaspersky Embedded Systems Security policy.

   The policy properties window opens.

3. Select the Application settings tab.
4. Go to Network activity control → Network Threat Protection and click the Configure button.
5. In the window that opens, select the Enable Network Threat Protection check box.
6. Enable the Block mode.
7. Select the Block attacking devices for check box and specify the blocking duration.
8. If necessary, specify exclusions by IP address.
9. Save your changes.

To configure the blocking of untrusted network sessions for the Behavior Detection component:

1. In the main window of the Web Console, select Assets (Devices) → Policies & profiles.
2. Click the name of the Kaspersky Embedded Systems Security policy.

   The policy properties window opens.

3. Select the Application settings tab.
4. Go to Real-Time Computer Protection → Behavior Detection and click the Configure button.
5. In the window that opens, select the Enable Behavior Detection check box.
6. Go to the Protection of shared folders tab and select the Enable protection of shared folders against external encryption check box.
7. Select Block connection and specify the blocking duration in the Upon detection of external encryption of shared folders. section.
8. If necessary, specify the protection scopes and exclusions by IP address and mask.
9. Save your changes.

1. In the Kaspersky Embedded Systems Security Console tree, select Real-Time Computer Protection → Network Threat Protection.
2. In the results pane of the Network Threat Protection node, click Properties.

   The Properties: Network Threat Protection window opens.

3. In the window that opens, select the Network Threat Protection check box.
4. On the General tab, enable the Block mode.
5. Select the Block attacking devices for check box and specify the blocking duration.
6. Save your changes.

To configure the blocking of untrusted network sessions for the Behavior Detection component:

1. In the Kaspersky Embedded Systems Security Console tree, select Real-Time Computer Protection → Anti-Cryptor.
2. In the results pane of the Behavior Detection node, click Properties.
3. In the window that opens, select the Behavior Detection check box.
4. Go to the Protection of shared folders tab and select the Protect shared folders check box.
5. Select Block connection for and specify the blocking duration.
6. If necessary, specify the protection scopes and exclusions by IP address and mask.
7. Save your changes.

1. In the Application Console tree, expand the Storages node.
2. Select the Blocked network sessions child node.
3. In the results pane, click the Properties button.
4. In the window that opens, select the Block attacking devices for check box and specify the blocking duration.
5. To restore access to all blocked network sessions, click Unblock all in the upper part of the window.

   All network sessions will be removed from the list and unblocked.

6. To remove network sessions from the list of blocked network sessions, in the list in the results pane, select one or more sessions and click Unblock selected in the upper part of the window.

   The selected network sessions are unblocked.