Kaspersky Lab Kaspersky Internet Security 2011, 5u, Box, DE/FR/IT KL1837XXEFS-SUI Manuel D’Utilisation
Codes de produits
KL1837XXEFS-SUI
A
D V A N C E D A P P L I C A T I O N S E T T I N G S
125
W
ORKING WITH
F
IREWALL RULES
The Firewall operates on the basis of two types of rules:
Packet rules. They are used for posing restrictions on packets regardless of the application. Typically, such
rules restrict incoming network activity on specified TCP and UDP ports and filter ICMP messages.
rules restrict incoming network activity on specified TCP and UDP ports and filter ICMP messages.
Application rules. They are used to set limits on network activity of a specified application. Such rules allow fine-
tuning the activity filtering, for example, when a certain type of network connections is banned for some
applications but is allowed for others.
tuning the activity filtering, for example, when a certain type of network connections is banned for some
applications but is allowed for others.
Packet rules have higher priority than application rules. If both packet rules and rules for applications are applied to the
same type of network activity, this network activity is processed using the packet rules. Besides, you can set a priority for
each rule (see page
same type of network activity, this network activity is processed using the packet rules. Besides, you can set a priority for
each rule (see page
C
R E A T I N G A P A C K E T R U L E
Packet rules consist of a set of conditions and operations over packets performed when these conditions are met.
When creating packet rules, remember that they have priority over the rules for applications.
To create a packet rule:
1. Open the application settings window.
2. In the left part of the window, in the Protection Center section, select the Firewall component.
3. Click the Settings button in the right part of the window.
4. In the window that opens, on the Packet rules tab, open the network rule creation window by clicking the Add
button.
5. In the Network rule window that opens, specify the required settings and click the OK button.
6. Assign a priority to the new rule by moving it up or down the list clicking the Move up and Move down buttons.
Once you have created the rule, you can modify its settings or delete it using buttons in the top part of the tab.
To disable the rule, uncheck the box next to the rule's name.
To disable the rule, uncheck the box next to the rule's name.
E
D I T I N G G R O U P R U L E S
), Firewall's default feature is to filter network activity of an
application using the rules of the group in which this application has been included.
Network rules of a trust group define which rights of access to various networks can be granted to the applications that
have been included in this group. You can add new network rules for a group or edit the preset ones.
have been included in this group. You can add new network rules for a group or edit the preset ones.
To add a network rule for a group:
1. Open the application settings window.
2. In the left part of the window, in the Protection Center section, select the Firewall component.
3. Click the Settings button in the right part of the window.
4. In the window that opens, on the Application rules tab, select the required group from the list and click the Edit
button.