Add / Edit packet rule window
Expand all | Collapse all
Action
This drop-down list lets you select the action performed by Kaspersky Internet Security on detecting network activity for which the packet rule is created. The list contains the following values:
- Allow. Kaspersky Internet Security allows the network connection.
- Block. Kaspersky Internet Security blocks the network connection.
- By application rules. Kaspersky Internet Security does not process the data stream according to the packet rule, but instead applies an application rule.
Name
Network rule name. You can use the name of a network service as a network rule name.
A Network service is a collection of settings that describe the network activity for which you are creating a rule.
Direction
This drop-down list lets you choose the network activity direction to be monitored. The list contains the following directions of network activity:
- Inbound. Kaspersky Internet Security applies the rule to network connections opened by a remote computer.
- Outbound. Kaspersky Internet Security applies the rule to the network connection that was opened by your computer.
- Inbound/Outbound. Kaspersky Internet Security applies the rule both to inbound and outbound data packets or streams, regardless of which computer (your computer or a remote computer) initiated the network connection.
- Inbound (packet). Kaspersky Internet Security applies the rule to data packets received by your computer. It is not applied in the application rules.
- Outbound (packet). Kaspersky Internet Security applies the rule to data packets sent by your computer. It is not applied in the application rules.
Protocol
In the list, you can select a protocol type that you want Kaspersky Internet Security to monitor. The following protocols are available: TCP, UDP, ICMP, ICMPv6, IGMP, and GRE.
ICMP settings
In the ICMP settings section, you can configure the type and code of data packets to be scanned.
In the drop-down list on the left, you can select a type of ICMP packets to be scanned .
In the drop-down list on the right, you can select a code of ICMP packets to be scanned.
The settings section is available if the ICMP or ICMPv6 protocols are selected.
Remote ports
Comma-delimited remote port numbers.
Local ports
Comma-delimited numbers of the local ports that are affected by the rule.
Address
Allows you to set the range of addresses to which the rule is applied by Kaspersky Internet Security. Available values:
- Any address. Kaspersky Internet Security applies the rule to any IP address.
- Subnet addresses. Kaspersky Internet Security applies the rule to IP addresses from all networks that are currently connected and have the specified status. For this setting, below you can select the network status to which Kaspersky Internet Security should apply the rule (trusted networks, local networks, or public networks).
- Addresses from the list. Kaspersky Internet Security applies the rule to IP addresses within the specified range. The Remote addresses and Local addresses fields are available for this setting (the Local addresses list is unavailable when a network rule is created).
Status
The network rule status that indicates whether the network rule is used by Firewall.
May have one of the following values:
- Active. Firewall uses the network rule to process data packets.
- Inactive. Firewall does not use the network rule.
Log events
This check box enables / disables logging of connections that are established via the selected protocol.
If this check box is selected, Kaspersky Internet Security logs details of events in the report.
Network rule template
Clicking this link opens a list where you can select a template for creating a network rule.