PM Security Cloud

Highlighted
Aspirant

PM Security Cloud

Hi there, we have a locked down enviroment for certian computers, and they all say Security Cloud: Network Status Disconnected,

 

I was wondering what firewall rules I need to open in PM to allow the clients to connect to security cloud.

Below is out current Firewall rules for those secure machines.

 

Many thanks

Disco.pngCurrent Firewall RulesDisco1.pngSecurity Cloud notification

Tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions
Superuser

Re: PM Security Cloud

Hello,

 

As far as I know, the F-Secure Internet Shield firewall module has an invisible, factory built-in rule to always allow traffic to / from the policy managment server and the ORSP cloud, so that they cannot be blocked out accidentally.

 

If a customer really wants to turn off cloud-based reputation lookups (and accepts the corresponding 33-40% decline in detection efficiency against newly emerging malware!) than he can do so under the

F-Secure / F-Secure Security Cloud Client 1.15 / Settings / Participate in the cloud = NO and Client is Enabled = NO settings, found within the F-Secure Policy Manager Console, rather than abusing the personal firewall module.

 

Because of the above circumstances, I think the traffic blocking may happen in a gateway-level firewall at the customer's site, if they indeed operate a "locked down enviroment".

 

Best regards: Tamas Feher.

3 REPLIES 3
Superuser

Re: PM Security Cloud

Hello,

 

As far as I know, the F-Secure Internet Shield firewall module has an invisible, factory built-in rule to always allow traffic to / from the policy managment server and the ORSP cloud, so that they cannot be blocked out accidentally.

 

If a customer really wants to turn off cloud-based reputation lookups (and accepts the corresponding 33-40% decline in detection efficiency against newly emerging malware!) than he can do so under the

F-Secure / F-Secure Security Cloud Client 1.15 / Settings / Participate in the cloud = NO and Client is Enabled = NO settings, found within the F-Secure Policy Manager Console, rather than abusing the personal firewall module.

 

Because of the above circumstances, I think the traffic blocking may happen in a gateway-level firewall at the customer's site, if they indeed operate a "locked down enviroment".

 

Best regards: Tamas Feher.

Superuser

Re: PM Security Cloud

Hi,
check her for details on how and which servers you want to connect to:
https://community.f-secure.com/t5/Business/IP-addresses-for-F-Secure-update/ta-p/11407

http and https must be possible, a http-Proxy in between is OK, but must be configured in PM.

Usually the local F-Secure Firewalls in F-Secure do not need to be configured as outbound traffic is always allowed.

Rules with "domains" are not supported by F-Secure Firewall.

 

Matthias
----------
perComp is a Platinum Partner of F-Secure since 1994. Any advice or help given by me in this forum is voluntarily and to my best knowledge based on working with the products since 1997. Direct contact for customers please check our homepage http://www.percomp.de

Aspirant

Re: PM Security Cloud

Hi thanks both, that was helpful!