Configuring general settings of the Firewall Management task
To configure general settings of the Firewall Management task using the Administration Plug-in:
- Expand the Managed devices node in the Kaspersky Security Center Administration Console tree.
- Select the administration group for which you want to configure application settings.
- Perform one of the following actions in the details pane of the selected administration group:
- To configure application settings for a group of protected devices, select the Policies tab and open the Properties: <Policy name> window.
- To configure the settings of a task or application for an individual protected device, select the Devices tab and go to local task settings or application settings.
- In the Network activity control section, in the Firewall Management section, click the Settings button.
The Firewall Management window opens.
- On the General tab, in the Windows Firewall integration block, select the mode of interaction between Kaspersky Embedded Systems Security for Windows and Windows Firewall:
- Observe the state of Windows Firewall. If this option is selected, the application only monitors the status of Windows Firewall and sends a warning event to Kaspersky Security Center if Windows Firewall is not started.
If this option is selected to replace the Control the operation of Windows Firewall option, the application restores the internal settings of Windows Firewall the next time the operating system of the protected device is started.
- Control the operation of Windows Firewall. If this option is selected, the application monitors Windows Firewall to the extent determined by the following settings:
- Observe the state of Windows Firewall. If this option is selected, the application only monitors the status of Windows Firewall and sends a warning event to Kaspersky Security Center if Windows Firewall is not started.
- In the Inbound connections block, configure the settings for incoming network connections:
- Use the Action for inbound connections drop-down list to specify the action that Windows Firewall performs for all incoming network connections, unless otherwise defined in the Firewall rules for incoming connections.
- If necessary, add Firewall rules for incoming connections.
Firewall rules for incoming connections perform the role of exclusions. For example, if you configure an allowing rule for incoming network connections, and you select Block in the Action for inbound connections drop-down list, Windows Firewall allows incoming network connections that match the rule criteria.
- In the Outbound connections block, configure the settings for outgoing network connections:
- Use the Action for outbound connections drop-down list to specify the action that Windows Firewall performs for all outgoing network connections, unless otherwise defined in the Firewall rules for outgoing connections.
- If necessary, add Firewall rules for outgoing connections.
Firewall rules for outgoing connections perform the role of exclusions. For example, if you configure a blocking rule for outgoing network connections, and select Allow in the Action for outbound connections drop-down list, Windows Firewall blocks outgoing network connections that match the rule criteria.
- Click the OK button to save the changes.
Kaspersky Embedded Systems Security for Windows applies the new settings to the running task. The date and time when the settings were changed are saved in the system audit log.
