Changing the Firewall action for network rules of an application group via Kaspersky Security Center

In Kaspersky Security Center, you can edit the action that Firewall applies for the application group network rule on detecting network activity in this application group.

You can change the Firewall action that is applied to network rules for an entire application group that were created by default, and change the Firewall action for a single custom application group network rule.

To change the Firewall action that is applied to all network rules for an application group via Kaspersky Security Center:

  1. Open Kaspersky Security Center Administration Console.
  2. In the Managed devices folder of the console tree, open the folder with the name of the administration group to which the relevant protected virtual machines belong.
  3. In the workspace, select the Policies tab.
  4. Select a Light Agent for Windows policy in the list of policies and open the Properties: <Policy name> by double-clicking.
  5. In the Light Agent for Windows policy properties window, select the Firewall section in the list on the left.

    In the right part of the window, the Firewall component's settings are displayed.

  6. In the Firewall rules section, click the Settings button located in the upper part of the section.

    The Firewall window opens to the Application control rules tab.

  7. In the list of applications, select the application group for whose default network rules you want to change the Firewall action. The custom network rules for this application group remain unchanged.
  8. In the Network column, click to display the context menu and select the action that you want to assign:
    • Inherit.
    • Allow.
    • Block.
  9. In the Firewall window, click OK.
  10. Click the Apply button.

To change the Firewall action for one network rule of an application group via Kaspersky Security Center:

  1. Open Kaspersky Security Center Administration Console.
  2. Complete steps 2–6 of the previous instructions.
  3. In the list of applications, select the application group for whose network rule you want to change the Firewall action.
  4. Click the Edit button or right-click to bring up the context menu and select the Group rules item.

    The Application group control rules window opens.

  5. In the window that opens, select the Network rules tab.
  6. In the list of network rules select the network rule for which you want to change the Firewall action.
  7. In the Permission column, right-click to bring up the context menu and select the action that you want to assign:
    • Allow.
    • Block.
    • Log events.
  8. In the Application group control rules window, click OK.
  9. In the Firewall window, click OK.
  10. Click the Apply button.
Page top