Kaspersky Lab WorkSpace Security EU ED, 25-49u, 2Y, RNW KL4851XAPDR User Manual
Product codes
KL4851XAPDR
U
S E R
G
U I D E
188
2. Select the type of activity that you want the action to apply to from the dropdown list:
Any activity
– any network activity initiated by this application.
Custom
– specific activity that you will have to define in the rule creation window.
<Template>
– name of the template that includes the set of rules typical of the network activity of the
application. This activity type appears on the list if Kaspersky Anti-Virus includes an appropriate template for
the application that has initiated the network activity. In such a case, you will not have to customize what
activity to allow or block. Use the template and a set of rules for the application will be created
automatically.
the application that has initiated the network activity. In such a case, you will not have to customize what
activity to allow or block. Use the template and a set of rules for the application will be created
automatically.
3. Select a necessary action
– Allow or Block.
Remember that the rule created will be used only when all of the connection parameters match it. This rule will not apply
to a connection established from a different local port, for example.
to a connection established from a different local port, for example.
If you do not want to receive notifications from Anti-Hacker, when applications attempt to establish network connections,
use the Turn off Training mode link. After this, Anti-Hacker will switch to Minimum protection mode, which allows all
network connections except those that are clearly banned by the rules.
use the Turn off Training mode link. After this, Anti-Hacker will switch to Minimum protection mode, which allows all
network connections except those that are clearly banned by the rules.
N
ETWORK ACTIVITY OF A MODIFIED EXECUTABLE FILE
DETECTED
If Anti-Hacker detects network activity initiated by the modified executable file of a program that has been started by the
user, a special notification will be displayed. A file is considered modified if it has been updated, or infected by a
malicious program.
user, a special notification will be displayed. A file is considered modified if it has been updated, or infected by a
malicious program.
The notification contains:
Information about the program that has initiated network activity
– name and ID of the process, as well as the
program manufacturer and version number.
Action
– series of operations that Kaspersky Anti-Virus should perform regarding the network activity detected.
You are offered to select one of the following actions on the object:
Allow
– information about the modified executable file will be updated within the existing rule for application.
Further, its network activity will be allowed automatically.
Deny
– network activity will be denied once.
N
EW NETWORK DETECTED
Every time your computer connects to a new zone (i.e. network), a special notification will pop up.
The upper portion of the notification contains a brief description of the network, specifying the IP address and subnet
mask.
mask.
The bottom part of the window requests you to assign a status to the zone, and network activity will be allowed based on
that status:
that status:
Internet in Stealth Mode (block external access to computer). This feature only allows network activity that
the user or an allowed application initiates. This actually means that your computer becomes invisible to its
surroundings. This mode does not affect your computer’s performance on the Internet.
the user or an allowed application initiates. This actually means that your computer becomes invisible to its
surroundings. This mode does not affect your computer’s performance on the Internet.