Add Expert Rules to an Application - Simple Computer Security Disinfect Your PC pdf

If you want to add specific access conditions to an application in the Advanced Application Control section, you can add expert rules to it:

1.

Select the Firewall tab on the left side of the CA Personal Firewall window.

The Firewall window appears.

2.

Select the Application Control tab, as shown in Figure 7-45.

Figure 7-45:Selecting the Application Control tab

3.

Select the application that you want to add expert rules to, and then click Edit, as shown in Figure 7-46.

Figure 7-46:Editing Expert Rules for an application

The Application Rules window appears.

4.

If the program changes frequently, select the This Program Changes Frequently check box.

5.

Click the Add button on the upper left side of the window, as Figure 7-47 shows.

Figure 7-47:Adding an Expert Rule

6.

Enter a name for the rule in the Rule Description field, then click the Enable rule check box at the top of the Expert Rule Configuration window.

You can now configure the Protocol tab.

7.

Click the Protocol tab, then click the drop-down arrow in the Protocol & Ports field and select one of the listed protocols that rules can be established for, as shown in Figure 7-48.

Figure 7-48:Selecting a protocol

Note

For details on the available protocols, see Expert Rules.

a. (Optional) Click Add to add a new protocol that you

want to specify.

The Add Protocols and Ports window appears.

b. If you’ve selected Specify Directly, complete the fields

provided in the Specify Details section, as shown in Figure 7-49, and then click OK.

Figure 7-49:Specifying details

c. Choose from one of the following access types from

the Access field using the drop-down arrow:

•

Prevent: No access by the selected protocol is

permitted.

•

Allow: Access by the selected protocol is permitted.

•

Ask User: You will be asked when an access

attempt is made by the selected protocol is made. The selected access type is displayed in the Access field.

d. Choose from one of the following audit types that

you require for this rule from the Audit field using the drop-down arrow:

•

Ignore: No alerting or logging is performed.

•

Monitor: Access to this protocol is logged.

•

Alert: An alert is displayed when access to this pro-

tocol is attempted.

The selected audit type is displayed in the Audit field.

e. If you want to specify further details for this rule, click

the Edit button and use the fields provided in the Specify Details section, then click OK.

8.

Select the My Computer tab, as Figure 7-50 shows, and complete the following sections:

Figure 7-50:Selecting the My Computer tab

Note

My Computer refers to connections initiated by the computer you are currently configuring.

a. Use the drop-down arrow located in the IP Address

field to select from one of the following preset IP set- tings provided:

•

All addresses

•

My Computer

•

Safe Zone

•

Restricted Zone

•

Specify Directly

•

LAN

•

Loopback

Note

If you choose Specify Directly, you must complete the Specify Details section located at the bottom of this window.

b. (Optional) Click Add to add a new IP address to the

drop-down list of preset IP addresses. The Add IP Address window appears.

c. Complete the fields provided, then click OK.

Your Local Computer IP address is selected. You are now ready to configure the Remote Computer tab.

9.

Select the Remote Computer tab, as Figure 7-51 shows, and complete the following sections:

Figure 7-51:Selecting the Remote Computer tab

Note

Remote Computer refers to connections initiated by other computers on the local network, or Internet.

a. Use the drop-down arrow located in the IP Address

field to select from one of the following preset IP set- tings provided:

•

All addresses

•

Specify Directly

•

LAN

•

Loopback

Note

If you choose Specify Directly, you must complete the Specify Details section located at the bottom of this window.

b. (Optional) Click Add to add a new IP address to the

drop-down list of preset IP addresses. The Add IP Address window appears.

c. Complete the fields provided, then click OK.

Your Remote Computer IP address is selected. You are now ready to configure the Restrictions tab.

10.

Click the Restrictions tab, as shown in Figure 7-52, and complete the following sections:

Figure 7-52:Selecting the Restrictions tab

a. Use the drop-down arrow located in the Time field to

specify whether the rule should be run all the time, or according to a determined schedule.

If you select Specify Time to Run in the Time field, the list of days becomes visible.

b. Click the check box provided for the day or days on

which you want the rule to run.

The From and To fields become visible.

c. Select the start and end times for the rule using the up

and down arrows.

11.

Click OK.

Your expert rule is saved and active.

In document Simple Computer Security Disinfect Your PC pdf (Page 179-186)