[KB3426] How do create or edit firewall rules for client workstations in ESET Remote Administrator? (5.x)

Issue

  • Create, edit, or delete a firewall rule for client workstations running ESET Endpoint Security using Policy Manager
  • Create, edit, or delete firewall rules on individual client workstations

Solution

A new version has been released

Version 6 of ESET Remote Administrator (ERA) and ESET business products were released in North America December 11th, 2014, and globally February 25th, 2015. This article applies to version 5.x and earlier ESET business products. For information about what's new in the latest version and how to upgrade, see the following article:

If you do not use ESET Remote Administrator to manage your network

Perform these steps on individual client workstations.

  1. Open the ESET Remote Administrator Console (ERAC) by clicking Start All Programs ESET ESET Remote Administrator Console ESET Remote Administrator Console, or by double-clicking the ERAC icon on your desktop.
     
  2. Click Tools Policy Manager.
     
  3. Select the policy that you want to modify and click Edit Policy.

Figure 1-1
Click the image to view larger in new window

  1. Expand Windows desktop v5Personal firewallSettings Rule setup and click Edit.

Figure 1-2
Click the image to view larger in new window

  1. Click New.

    Editing and deleting rules

    To edit a rule: Select the rule you want to modify and click Edit.
    To delete a rule: Select the rule you want to remove and click Delete (Del).

 

 

Figure 1-3

  1. Configure the following parameters in the General tab based on the type of firewall rule that you are creating:
    • Type a name for your rule into the Name field.
       
    • Select Both, In or Out from the Direction drop-down menu.
       
    • Select Allow, Deny or Ask from the Action drop-down menu.
       
    • The Protocol and Profile settings are not mandatory, but can be used to more precisely target a rule.
       
    • Select the check box next to Log and/or Notify user, to have ESET Remote Administrator automatically perform these actions when the rule is triggered.

Figure 1-4

  1. Set the following parameters in the Local tab:
    • Click Add port or Add port range to target communications on a specific local port with your rule.
       
    • To target a specific application with your rule, click browse under Application, navigate to the .exe file for the target application and then click Open

Figure 1-5

  1. Set the following parameters in the Remote tab:
    • Click Add port or Add port range to target communications on a specific remote port with your rule.
       
    • Click Add IPv4 address or Add IPv6 address to target communications from a specific IP address with your rule.
       
    • Click Add zone to apply your rule to communications to a specific zone (you can create zones based on network settings in the Zones section of the Zone and rule setup dialog).

Figure 1-6

  1. When you are finished making changes to rule parameters, click OK. Your new rule will appear in the Zone and rule setup window. Click OK again to close the Zone and rule setup window. Client workstations will receive your new rule the next time that they check in to ESET Remote Administrator.

Figure 1-7
Click the image to view larger in new window


Create or edit firewall rules on individual client workstations

  1. Open ESET Endpoint Security. How do I open my ESET product?
     
  2. Press the F5 key to open the Advanced setup window.
     
  3. Expand Network, click Personal firewall and then select Automatic mode with exceptions (user-defined rules) from the Filtering mode drop-down menu.

    Figure 2-1
    Click the image to view larger in new window

  4. Expand Personal firewall, click Rules and Zones, and then click Setup in the Zone and rule editor.

    Figure 2-2
    Click the image to view larger in new window

  5. In the Rules tab, click New to add a new rule.

    Editing and deleting rules

    To edit an existing rule: Select the rule you want to modify and click Edit.
    To delete an existing rule: Select the rule you want to remove and click Delete.

    Figure 2-3
    Click the image to view larger in new window

  6. Enter a name for your rule and select Allow or Deny from the Action drop-down menu.

    Figure 2-4

  7. Click the Local tab and click Browse. Navigate to the location of the application you want to create the rule for, select it and then click Open.
     
  8. Make sure you see For every next to Remote side and Local side, and then click OK to create the new rule.

    Figure 2-5

  9. Click OK to close the Zone and rule setup window, then OK again to exit the Advanced setup window.