Support

Support for business applications

Kaspersky Embedded Systems Security 3.x

Firewall Management

About Firewall rules

Kaspersky Embedded Systems Security 3.x
Нет результатов
Knowledge Base Online Help
FAQ Download Forum Contact support Recovery tools

About Firewall rules

October 25, 2023

ID 146690

Save as PDF

If the mode of interaction with Windows Firewall is set to Control the operation of Windows Firewall, the Firewall Management task filters network traffic through Windows Firewall by using firewall rules.

Firewall rules for applications control network connections for specified applications. The triggering criterion for these rules is based on the path to an executable application file.

Firewall port rules control network connections for specified ports and protocols (TCP / UDP). The triggering criteria for such rules are the port or port range and the type of protocol.

Port rules involve a broader scope than application rules. By allowing network connections based on port rules, you lower the security level of the protected device.

You can manage firewall rules:

  • create and delete firewall rules
  • change the settings of firewall rules
  • enable or disable firewall rules

Firewall rules created by default

During installation, Kaspersky Embedded Systems Security for Windows creates a set of allowing rules to prevent blocking of applications that are installed together with Kaspersky Embedded Systems Security for Windows. See below for details and limitations.

When installed on a device with any supported version of Windows, Kaspersky Embedded Systems Security for Windows creates a set of rules for incoming network connections:

  • Allowing rules for the Kaspersky Embedded Systems Security for Windows Console, (kavfsgt.exe), which is located in the application installation folder. Status: enabled. Rule scope: all addresses. Protocols: TCP and UDP, one rule per protocol.
  • Two allowing rules for local port 15000, if Kaspersky Security Center Network Agent is installed on the device. State: enabled. Rule scope: all addresses. Protocols: TCP and UDP, one rule per protocol.

When installing on a device with Windows 7 or higher, Kaspersky Embedded Systems Security for Windows creates a set of rules for outgoing network connections:

  • Allowing rules for the Kaspersky Embedded Systems Security for Windows Console, (kavfsgt.exe), which is located in the application installation folder. Status: enabled. Rule scope: all addresses. Protocols: TCP and UDP, one rule per protocol.
  • Allowing rules for Kaspersky Embedded Systems Security for Windows, (kavfswp.exe), which is located in the application installation folder. State: enabled. Rule scope: all addresses. Protocols: TCP and UDP, one rule per protocol.
  • Two allowing rules for local port 13000, if Kaspersky Security Center Network Agent is installed on the device. State: enabled. Rule scope: all addresses. Protocols: TCP and UDP, one rule per protocol.

When uninstalling Kaspersky Embedded Systems Security for Windows, the application deletes all created firewall rules, except for those created by Kaspersky Security Center Network Agent, such as Kaspersky Security Center WDS and Kaspersky Administration Kit. The application also deletes rules for ICMPv4 and ICMPv6 for Windows 7 and later.

When uninstalling Kaspersky Embedded Systems Security for Windows, the application allows all ICMP connections for operating systems earlier than Windows 7.

Kaspersky Professional Services
Implementation services. Health check and security system configuration. Contact us if you need expert help.
Kaspersky Premium Support (MSA): High‑priority incident processing
Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).
Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.