To help ensure that the OfficeScan firewall works properly, perform a test on a client or group of clients.
Test OfficeScan client program settings in a controlled environment only. Do not perform tests on client computers connected to the network or to the Internet. Doing so may expose client computers to viruses, hacker attacks, and other risks.
To test the firewall:
Create and save a test policy. Configure the settings to block the types of traffic you want to test. For example, to prevent the client from accessing the Internet, do the following:
Set the security level to Low (allow all inbound/outbound traffic).
Select Enable firewall and Notify users when a firewall violation occurs.
Create an exception that blocks HTTP (or HTTPS) traffic.
Create and save a test profile, selecting the clients to which you will test firewall features. Associate the test policy with the test profile.
Click Assign Profile to Clients.
Verify the deployment.
Click Networked Computers > Client Management.
Select the domain to which a client belongs.
Select Firewall view from the client tree view.
Check if there is a green check mark under the Firewall column of the client tree. If you enabled the Intrusion Detection System for that client, check that a green check mark also exists in the IDS column.
Verify if the client applies the correct firewall policy. The policy appears under the Firewall Policy column in the client tree.
Test the firewall on the client computer by attempting to send or receive the type of traffic you configured in the policy.
To test a policy configured to prevent the client from accessing the Internet, open a Web browser on the client computer. If you configured OfficeScan to display a notification message for firewall violations, the message displays on the client computer when an outbound traffic violation occurs.
See also: