Jump to content
Kaspersky Support Forum

Blocking internet access of an application

xpreme

By xpreme
in Kaspersky Security Center

 Share

Recommended Posts

xpreme

xpreme

Posted
Posted

Dears,

    I have a specific application on some devices which their access to the internet must be blocked. I tried configuring application rules on Firewall in Kaspersky Security Center (KES policy). However I cannot find it on application rule window. How can it be done actually? Can I define an application manually to block its access to the internet?

Your help is highly appreciated

 

ElvinE5

ElvinE5

Posted
Posted (edited)

I think that this problem, unfortunately, cannot be solved by means of KES

Do I understand correctly that you want to add your application to the "trust" groups, but when searching, the list is empty?

Спойлер

image.thumb.png.40d874cbe78ae9155f1b846cdef8f641.png

this may mean that data about this executable file has not yet reached the KSC ... information will be sent through the network administration agent, KES policy settings (components - application control, behavior analysis, etc.) when the application is launched

check the following...

1. agent policy

Спойлер

image.thumb.png.97617b21f9d278cd22d08556b3ff1c3b.png

2. KES policy

Спойлер

image.thumb.png.03ada004e8bc5ed94465636b1208d6cd.png

and enable the application control component... even if you don't write any rules for it

Спойлер

image.thumb.png.fc16bcf84bcc76633f2ff4f227008c08.png

Of course, this component must be installed on your device ... in order to accept these policies and return data about running programs.

The system will collect all data about running programs and transfer them to KSC ... filling the list of executable files that you can then use

Спойлер

image.thumb.png.2d1cd9dda2f41f4440f7bf4751aff086.png

 

3. if you need to quickly collect data on all programs ... for a device with KES installed, you can use the "inventory" task configure where to search (where your software is installed) - to reduce the task's running time ... to get information about all executable files in the directory

Спойлер

image.thumb.png.b55ba4a1af015267089fcbb2ca9c733e.pngimage.thumb.png.78434579bbdf037ba75a7a19fbef9cd8.png

 

however, when adding your software to one of the trust groups, the preset settings will be applied to it ... and if we do not want the software to be able to work over the network, then you need to select High restrictions or Untrusted. and then your software will not be able to work over the network (and any), and much more that is limited for this group of programs.

Спойлер

image.thumb.png.54059fd2d4f1fdedbd6d1dada07e259f.pngimage.thumb.png.ae90c9f46c8a739da6240f57d94bd509.pngimage.thumb.png.6dcc7d8a3e9ca9923cd205cb30eb5259.png

unfortunately, we cannot create our own trust groups to assign them to our programs and customize settings ... and if you change settings in predefined groups (trusted, low and high restrictions, or untrusted), then these settings will be applied to all applications with this trust status ...

Edited by ElvinE5
xpreme

xpreme

Posted
  • Author
Posted

Hi @ElvinE5

    I really appreciate your detailed answer and complete instructions. It is possible to do such thing in Windows Firewall, however since Windows firewall is being managed by Kaspersky app, I won't be able to use it. I will check your instructions as well.

 

Thank you so much again

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share
Go to topic listing


×
×
  • Create New...