FW rules from 13 to 14
100 workstations of which 20 has USB-printers, sharing them to other users, so
incoming "windows networking" is disabled on 80 wks and enabled on 20 wks.
Solution in ver 13:
Root level (80 wks) -> disabled
Separate subdomain "Printshares" (20 wks) -> enabled
Solution in ver 14??
Inheritance seems to be different. If I enable a rule in subdomain, it will be enabled also in root level. Could someone explain, how to separate these 80 vs. 20 workstations?
On ver 13 we had last rule line "block all" and now we don't know, should we create similar rule into ver 14 also? If we don't have this line, "windows networking" will be enabled on all 100 wks, which is not safe.
Seems that our own "windows networking" rule (made in PMC ver 14 rule set) is not working at all. Maybe Microsoft have made their own rules, which are on higher preference than those coming from Policy Manager? How should we live and understand with two rule sets "F-secure" vs. "Microsoft" ??
Do you have any FAQ Guide named like "Deep understanding of Firewall ver 14" ??