[KB5833] Manage SSL/TLS protocol filtering in ESET Windows home and small office applications

Issue

Details

Click to expand

ESET applications automatically check the security of communications to and from your computer by default. In addition to standard network communications, SSL and TLS communications are also checked for security.

See more information about protocol filtering and SSL/TLS scanning in ESET Security Ultimate, ESET Smart Security Premium, ESET Small Business Security, or ESET Safe Server.

Solution

Enable or disable Network traffic scanner

Network traffic scanner is enabled by default. To disable or re-enable protocol filtering:

  1. Open the main program window of your ESET Windows application.

  2. Press the F5 key to open Advanced setup.

  3. Click Scans, expand Network traffic scanner, and click the toggle next to Enable Network traffic scanner to enable or disable this feature. Click OK to save the changes and exit Advanced setup.

    Risk of disabling SSL/TLS protocol filtering

    With more online content using an "HTTPS everywhere" approach, SSL/TLS scanning is increasingly important because threats can be hidden within encrypted communications.

    ESET applications are designed to detect threats at the application level regardless of network filtering settings. However, for the most secure configuration, we recommend leaving SSL/TLS protocol filtering enabled whenever you can.

Exclude an Application or IP address from the Network traffic scanner

  1. Open the main program window of your ESET Windows application.

  2. Press the F5 key to open Advanced setup.

  3. Click ProtectionsWeb access protection, expand Web access protection, and click Edit next to Excluded applications or Excluded IPs (the example below applies to the Excluded applications option).

  4. Click Add.

  5. Click the Browse icon, select an application and click OK.

  6. Click OKOK.

Enable or disable SSL/TLS

SSL/TLS is enabled by default. To disable or re-enable SSL/TLS:

  1. Open the main program window of your ESET Windows application.

  2. Press the F5 key to open Advanced setup.

  3. Click Protections, expand SSL/TLS, and click the toggle next to Enable SSL/TLS to enable or disable this feature. Click OK to save the changes and exit Advanced setup.

Remove a certificate from the list of Certificate rules

  1. Open the main program window of your ESET Windows application.

  2. Press the F5 key to open Advanced setup.

  3. Click Protections, expand SSL/TLS, and click Edit next to Certificate rules.

  4. Select the applicable certificate, click Delete, and click OKOK.

SSL/TLS mode

Use the drop-down menu to select the filtering mode you want to use. For more information, see detailed descriptions of each available filtering mode.

  1. Open the main program window of your ESET Windows application.

  2. Press the F5 key to open Advanced setup.

  3. Click Protections, expand SSL/TLS, and select a mode from the SSL/TLS mode drop-down menu. Click OK to save the changes and exit Advanced setup.

SSL/TLS application scan rules

Exclude a new application from SSL/TLS scanning. For more information, see additional information about SSL/TLS application scan rules.

  1. Open the main program window of your ESET Windows application.

  2. Press the F5 key to open Advanced setup.

  3. Click Protections, expand SSL/TLS, and click Edit next to Application scan rules.

  4. Click Add. Click the Browse icon and select the applicable application. Select the Scan action and click OKOK.

  5. Click OK to save the changes and exit Advanced setup.

Last Updated: May 11, 2026

Additional resources

User guides

ESET Forum

YouTube videos
ESET Support News ESET Customer Advisories ESET Status Portal ESET Technical Support

Existing customer?