[KB3327] Configure network profiles in ESET Cyber Security and ESET Cyber Security Pro

Issue

Solution

Configure your network profiles in ESET Cyber Security

Network profiles

Network profiles allow you to set the trust level for networks recognized by your firewall. We recommend assigning the trusted status to networks that you know are secure and reliable. When the computer is connecting to a new network a dialog window is shown where you can set the network type as either Private or Public. If the dialog window is ignored, the more secure choice is made marking the network as public. Users can configure a network profile through a popup that appears when communication is initiated on an unknown network. This setup is typically the only configuration most users need to perform for their firewall. 

The firewall distinguishes between two types of networks:

  • Private Network: This refers to familiar networks, such as those at home or work, where the user trusts all connected devices. As a result, less strict rules can be applied to communications on private networks. An inbound trusted rule can be applied to this network.
  • Public Network: This applies to unfamiliar networks, for example, public Wi-Fi, where the user cannot assess the safety of communications. Strict rules should be enforced on public networks to ensure security.
  1. Open your ESET Cyber Security product.

  2. From the macOS menu bar, click ESET Cyber Security → Settings and then click Network Profiles under Detection Engine.

    Figure 1-1
  3. Click Private or Public or Guest to view or modify existing network files.

    Figure 1-2
  4. To remove a network profile, click the network, then click the - icon (remove) and click OK.

    Figure 1-3

The network is identified using all available parameters provided by macOS. Access available parameters:

  • Click info in the firewall popup, to display a basic set of parameters. Click share to allow users to copy all parameters to the clipboard.
  • View the tooltip in the profiles setup table by hovering over the selected profile or by exporting the information to a CSV file using the context menu.

I. Configure your network profiles in ESET Cyber Security Pro

  1. Open ESET Cyber Security Pro.
     
  2. Click Setup → Firewall and click Setup next to Network traffic filtering.

    Figure 2-1

  1. Click the Profiles tab (see Figure 1-2).
     
  2. The default profiles are Home, Public and Work. You can customize one of these profiles or create a new profile based on the settings from an existing profile. To create a new profile, select the existing profile that you want to base the settings for your new profile on, type a name for your new profile into the New profile name field and click Clone

    Figure 2-2

  1. Select Interactive from the Filtering Mode drop-down menu and exit the Firewall window.

    Figure 2-3

  1. When prompted by the firewall, select Remember action (create rule) from the drop-down menu, make sure that your new profile is selected from the Profile drop-down menu and then click Allow or Deny to create a new rule for that profile.

    Figure 2-4

Creating new zones for use with your new profile

If the network connection you are on when you create a new network profile is not part of an existing zone, you will be notified that a new network connection has been detected. Select your new profile from the Profile drop-down menu, select the check box next to Remember network, expand Show settings and select the radio button next to Add network to a new zone. Click OK to create a new zone and associate it with your new profile. You can also select the radio button next to Add network to an existing zone to include this network in a zone that you have already created.

Figure 2-5

  1. Once you have created the rules that you want to use with this profile, click Setup → FirewallSetup and select Auto with exceptions from the Filtering Mode drop-down menu. You will no longer be prompted when the firewall detects new network traffic.

 Continue to the Define your zones section below for instructions to create a new zone without creating a dedicated profile for that zone.


II. Create your zones in ESET Cyber Security Pro

In addition to zones that are automatically detected, you can add zones based on IP address, subnet, WiFi network or interface. Once created, you can set any zone to use the rules from any one of your profiles, or create a new profile with a set of rules specific to this zone. To add a new zone, follow the steps below:

  1. Open ESET Cyber Security Pro.
     
  2. Click Setup → Firewall.
  1. Click Configure rules and zones.

    Figure 3-1

  1. Click the Zones tab and click Add.

    Figure 3-2

  1. Type a name for your new zone into the Name field and select the profile that you want to apply in this zone from the Sets profile drop-down menu (see Figure 3-3).
     
  2. Use the Activator drop-down menu to define whether ESET Cyber Security Pro recognizes this new zone based on IP address, subnet, WiFi network or interface. Once you select the type of activator you want to use, complete the fields necessary for that activator (for example, if you selected IPv4/IPv6 address, type the IP address for this zone into the Address field) and click Add. ESET Cyber Security Pro will now switch to the corresponding profile any time that you enter this zone.

    Figure 3-3