Document ID:2009061513570448 Last Modified:11/17/2009

How to block a specific IP using the Symantec Endpoint Protection client firewall / Network Threat Protection (NTP)

Situation:

You want to block network traffic associated with a specific IP address using the SEP client firewall, also known as NTP. How can this be accomplished?

Solution:

Edit the firewall policy associated with the clients to add a corresponding rule as follows: Open the SEPM, click the Policies tab, and edit the policy you wish to change Add a blank rule Modify the “Host” properties so that the “Source/Destination” IP is the address you wish to block (Local/Remote is less generic, and requires the local address of the client on which the rule should be applied) Change the “Action” to Block Save and deploy the policy as needed. This will block all incoming and outgoing traffic associated with the specified IP address.

Document ID:2009061513570448 Last Modified:11/17/2009

Does this document answer your question? Yes No Maybe, need to test None of the above Is this document well written and easy to use? Submit specific suggestions to improve the quality of this document.

Product(s): Endpoint Protection 11
Operating Systems(s):
Date Created: 06/15/2009