Specifications
Using the OfficeScan Firewall
7-9
Editing the Firewall Exception Template
The firewall exception template contains policy exceptions that you can configure to
allow or block different kinds of network traffic based on the client computer's port
number(s) and IP address(es). After creating a policy exception, edit the policies to
which the policy exception applies.
Decide which type of policy exception you want to use. There are two types:
Restrictive
Blocks only specified types of network traffic and applies to policies that allow all
network traffic. An example use of a restrictive policy exception is to block client ports
vulnerable to attack, such as ports that Trojans often use.
Permissive
Allows only specified types of network traffic and applies to policies that block all
network traffic. For example, you may want to permit clients to access only the
OfficeScan server and a Web server. To do this, allow traffic from the trusted port (the
port used to communicate with the OfficeScan server) and the port the client uses for
HTTP communication.
Client listening port: Networked Computers > Client Management > Status. The port
number is under Basic Information.
Server listening port: Administration > Connection Settings. The port number is under
Connection Settings for Networked Computers.
OfficeScan comes with a set of default firewall policy exceptions, which you can modify
or delete.
TABLE 7-37. Default firewall policy exceptions
EXCEPTION
NAME
ACTION PROTOCOL PORT DIRECTION
DNS Allow TCP/UDP 53 Incoming and
outgoing
NetBIOS Allow TCP/UDP 137, 138,
139, 445
Incoming and
outgoing