When you add or change a firewall rule on the Symantec Endpoint Protection client, you must decide what effect you want the rule to have. For example, you may want to allow all traffic from a particular source or block the UDP packets from a website.
Firewall rules are automatically enabled when you create them.
You can add or change firewall rules on unmanaged clients, or if the administrator grants client control to managed clients.
For 12.1.x, this feature is called Network Threat Protection.
In the Configure Firewall Rules dialog box, click Add to open a blank rule.
For managed clients, this action launches the rule creation wizard. The following steps describe configuring a blank rule.
On the General tab of the blank rule, type a name for the rule, and then click either Block this traffic or Allow this traffic.
To define the triggers for the rule, click on each tab and configure it as needed:
Ports and Protocols
For example, you may want to select to which network adapters this rule applies, to which hosts this rule applies, the time period during which the rule is active or inactive, or to log the packet traffic.
Use caution when you write to the Packet log, because a potentially large amount of data is logged.