|Advanced firewall configuration / Firewall reporting|
For more information, see Managing roles and sub-estates.
If the firewall configuration on endpoint computers differs from policy, you can turn reporting of local changes off.
Turning reporting of local changes off stops the firewall sending "differs from policy" alerts to Enterprise Console about changes made to the global rules, applications, processes, or checksums. You may want to do this, for example, when the endpoint computers are in interactive mode, since these are settings that can be changed by using the learning dialogs.
If the firewall configuration on endpoint computers is intended to conform to policy, you should turn reporting of local changes on.
To turn reporting of local changes off: