Firewall Settings – Network Types

Applies To: WatchGuard Advanced EPDR, WatchGuard EPDR, WatchGuard EPP

Each network interface on a computer has a specific type of network assigned to it. Computers with multiple network interfaces can have different network types assigned, and different firewall rules for each network interface.

Screen shot of WatchGuard Endpoint Security, Firewall settings

In the Firewall settings of a workstations and servers settings profile, you can configure the network type with one of these options:

  • Public Network — Public places such as airports, Internet cafés, and universities. Computers are not visible to other users on the network and some programs have limited access to the network. Limitations must be established on the way protected computers are used and accessed (file, resource, and directory sharing). Endpoint Security rules are enabled or disabled according to the administrator’s criteria.
  • Trusted Network — Home or office networks when you know and trust the other users and devices on the network. Computers are visible to other computers and devices on the network.
  • Detect Automatically — The network type (public or trusted) is selected automatically based on the rules you specify.

Configure Rules for Trusted Access

If you select Detect Automatically as the network type, you can add and configure rules to determine whether a computer is connected to a trusted network.

Screen shot of WatchGuard Endpoint Security, Rules for trusted access

To be considered on a trusted network, the computer must be able to resolve a domain previously defined on an internal DNS server. If the computer can connect to the DNS server and resolve the configured domain, then it is connected to the company network, and the firewall assumes the computer is connected to a trusted network.

To add a rule computers must meet to be considered connected to a trusted network:

  1. Select Configure Rules to Determine When a Computer Is Connected to a Trusted Network.
  2. Click The Add icon..
    The Add Criterion dialog box opens.

Screen shot of WatchGuard Endpoint Security, Add Criterion dialog box

  1. In the Criterion Name text box, type a name for the rule you want to add.
  2. In the DNS Server text box, type the IP address of the DNS server in your company network that can resolve DNS requests.
  3. In the Domain text box, type the domain to send to the DNS server for resolution.
  4. Click OK.

Related Topics

Configure Firewall Settings (Windows Computers)

Manage Settings Profiles