During use on local area networks (LANs) and the Internet, a computer is exposed to viruses, other malware, and a variety of attacks that exploit vulnerabilities in operating systems and software.
The operating system firewall protects personal data that is stored on the user's computer. The firewall blocks most threats to the operating system when the computer is connected to the Internet or a LAN. Firewall Management detects all network connections by the user's computer and provides a list of IP addresses, as well as an indication of the default network connection's status.
The Firewall Management task filters all network activity according to network packet rules. Configuring network packet rules lets you specify the desired level of computer protection, from blocking Internet access for all applications to allowing unlimited access.
While the Firewall Management task is running, Kaspersky Endpoint Security manages the parameters and rules of the operating system firewall. The application blocks any configuration of the operating system firewall parameters when, for example, a program or tool adds or deletes a rule. Kaspersky Endpoint Security checks the operating system firewall every 60 seconds and, if necessary, restores the set of firewall rules. The checking period cannot be changed.
In the Red Hat Enterprise Linux and CentOS 8 operating systems, firewall rules created using Kaspersky Endpoint Security can only be viewed through Kaspersky Endpoint Security (kesl-control -F --query command).
The operating system firewall continues to be checked even when the Firewall Management task is stopped. This allows the application to restore dynamic rules.
All outbound connections are allowed by default (default action setting), unless the corresponding blocking rules for the Firewall Management task are specified. The default action is performed with the lowest priority: if no other network packet rule has been triggered or if no network packet rules have been specified, the connection is allowed.
It is recommended to disable other operating system firewall management tools before enabling the Firewall Management task.