Kaspersky Lab WorkSpace Security EU ED, 15-19u, 2Y, RNW KL4851XAMDR ユーザーズマニュアル
製品コード
KL4851XAMDR
P
R O T E C T I O N A G A I N S T N E T W O R K A T T A C K S
93
C
HANGING
ICMP
PACKET TYPE
ICMP (Internet Control Message Protocol) is designed to inform the packet sender of errors or complicated situations that
occur during data transfer.
occur during data transfer.
If you select ICMP as the data transfer protocol in a packet filtration rule that you create, you can also specify the type of
ICMP message.
ICMP message.
For example, using the Ping utility that sends certain ICMP queries and receives replies to them, a hacker could learn
whether your computer is on or not. The application installation package includes a rule that blocks ICMP queries and
replies to them, which in turn prevents potential attacks on your computer.
whether your computer is on or not. The application installation package includes a rule that blocks ICMP queries and
replies to them, which in turn prevents potential attacks on your computer.
To change the type of ICMP packet, please do the following:
)) window, in the Properties section, check the
ICMP type box.
Then click the link with the name of the ICMP packet type in the Rule description section.
2. In the ICMP packet type window that will open, select the required value.
R
ULES FOR SECURITY ZONES
After you install the application, Anti-
Hacker analyzes your computer’s network environment. Based on the analysis, the
entire network space is broken down into conventional zones:
Internet
– the World Wide Web. In this zone, Kaspersky Anti-Virus operates as a personal firewall. At that,
default rules for packets and applications regulate all network activity to ensure maximum security. You cannot
edit protection settings when working in this zone, other than enabling Stealth Mode on your computer for added
safety.
edit protection settings when working in this zone, other than enabling Stealth Mode on your computer for added
safety.
Security zones
– certain conventional zones that mostly correspond with subnetworks that your computer is
added in (these could be local subnetworks at home or in office). By default, these zones are considered as
average-risk zones when working in them. You can change the statuses of these zones based on how much
you trust a certain subnetwork, and you can configure rules for packet filtering and applications.
average-risk zones when working in them. You can change the statuses of these zones based on how much
you trust a certain subnetwork, and you can configure rules for packet filtering and applications.
If Anti-Hacker Training Mode is enabled, a window will open every time your computer connects to a new zone,
displaying a brief description of it. You should assign a status to the zone, and network activity will be allowed based on
that status:
displaying a brief description of it. You should assign a status to the zone, and network activity will be allowed based on
that status:
Internet. This is the default status assigned to the Internet, since when you are on it, your computer is subjected
to all types of potential threats. It is recommended to select this status for networks not protected by any anti-
virus applications, firewalls, filters etc. When you select this status, the application ensures maximum security for
this zone:
to all types of potential threats. It is recommended to select this status for networks not protected by any anti-
virus applications, firewalls, filters etc. When you select this status, the application ensures maximum security for
this zone:
blocking any network NetBIOS activity within the subnetwork;
blocking rules for applications and packet filtering that allow NetBIOS activity within this subnetwork.
Even if you have created a shared folder, the information in it will not be available to users from subnetwork with
this status. Additionally, if this status is selected for a certain subnetwork, you will not be able to access files and
printers on other computers of this subnetwork.
this status. Additionally, if this status is selected for a certain subnetwork, you will not be able to access files and
printers on other computers of this subnetwork.
Local network. The application assigns this status to the majority of security zones detected when analyzing
the computer’s network environment, except for the Internet. This status is recommended for zones with an
average risk factor (for example, corporate LANs). If you select this status, the application allows the following:
the computer’s network environment, except for the Internet. This status is recommended for zones with an
average risk factor (for example, corporate LANs). If you select this status, the application allows the following:
any network NetBIOS activity within the subnetwork;
applying rules for applications and packet filtering that allow NetBIOS activity within this subnetwork.
Select this status if you want to grant access to certain folders or printers on your computer but block any other
external activity.
external activity.