Firewall Policies

Firewall policies allow you to block or allow certain types of network traffic not specified in a policy exception. A policy also defines which firewall features get enabled or disabled. Assign a policy to one or multiple firewall profiles.

OfficeScan comes with a set of default policies, which you can modify or delete.

With Active Directory integration and role-based administration, each user role, depending on the permission, can create, configure, or delete policies for specific domains.

The following table lists the default firewall policies.

Table 1. Default Firewall Policies

Policy Name

Security Level

Agent Settings

Exceptions

Recommended Use

All access

Low

Enable firewall

None

Use to allow agents unrestricted access to the network

Communication Ports for Trend Micro Control Manager

Low

Enable firewall

Allow all incoming and outgoing TCP/UDP traffic through ports 80 and 10319

Use when agents have an MCP agent installation

ScanMail for Microsoft Exchange console

Low

Enable firewall

Allow all incoming and outgoing TCP traffic through port 16372

Use when agents need to access the ScanMail console

InterScan Messaging Security Suite (IMSS) console

Low

Enable firewall

Allow all incoming and outgoing TCP traffic through port 80

Use when agents need to access the IMSS console

Also create new policies if you have requirements not covered by any of the default policies.

All default and user-created firewall policies display on the firewall policy list on the web console.