Reference Guide
Security Management Server Virtual v10.2.7 AdminHelp
253
High - Use this setting for deployment to systems or areas which are regularly infected. This setting
results in an average of 20-25 queries per day, per computer.
Very High - Dell recommends using this level only for scanning volumes and directories that do not
support executing programs or operating systems. Detections found with this level are presumed
malicious, but have not been fully tested to determine if they are false positives. Use this setting for on-
demand scans on non-operating system volumes. This setting results in an average of 20-25 queries
per day, per computer.
For more detail about Threat Protection policies, see Windows Threat Protection
.
Client Firewall Policies
The Client Firewall is a stateful firewall that checks all incoming and outgoing traffic against its list of
rules. If the traffic matches all criteria in a rule, the Client Firewall acts according to the rule, blocking or
allowing traffic through the firewall.
Configurable options and rules define how the Client Firewall works. When the master policy, Client
Firewall, is set to On, you can select View/Edit in the Settings and Rules policy to view or configure an
extensive set of Client Firewall options and rules.
Client Firewall options
Options include which subsets of traffic to block or allow and logging settings, as well as timeout
parameters for TCP, UDP, and ICMP connections.
Client Firewall rules
Client firewall rules define specific handling of network traffic. Each rule provides a set of conditions that
traffic must meet and an action to allow or block that traffic. When Client Firewall finds traffic that
matches a rule’s conditions, it performs the associated action.
Client Firewall uses precedence to apply rules and applies the rule at the top of the firewall rules list.
1. If the traffic meets the conditions of the rule at the top of the list, Client Firewall allows or blocks
the traffic. It does not try to apply any other rules in the list.
2. If the traffic does not meet the first rule’s conditions, Client Firewall continues to the next rule in
the list until it finds a rule that the traffic matches.
3. If no rule matches, the firewall automatically blocks the traffic.
For a list of Client Firewall rules and their descriptions, see Client Firewall Settings and Rules
.
Web Protection Policies
Web Protection monitors web browsing and downloads to identify threats and enforce action set by
policy when a threat is detected, based on ratings for websites. When you set the master policy, Web
Protection, to On, you can set other policies for Web Protection.
The Reputation Service analyzes each website and assigns a color-coded safety rating based on test
results. The color indicates the level of safety for the site:
Red – Malicious
Yellow – Potentially malicious
Green - Safe
Through the following policies, you can assign actions to implement when a user accesses a website or
attempts a download, based on website ratings:
Rating Action for Red Sites - Specifies the action to apply to sites that are rated Red. Default: Block.