Create an application rule from a firewall policy

Note: If you use role-based administration:
  • You must have the Policy setting - firewall right to configure a firewall policy.
  • You cannot edit a policy if it is applied outside your active sub-estate.

For more information, see Managing roles and sub-estates.

You can create an application rule directly from a firewall policy using the advanced firewall policy configuration pages.

To create an application rule from a firewall policy:

  1. Double-click the policy you want to change.
  2. On the welcome page of the Firewall Policy wizard, click the Advanced firewall policy button.
  3. In the Firewall Policy dialog box that appears, click Configure next to the location for which you want to configure the firewall.
  4. Do one of the following:
    • If you want to add an application to the firewall policy, in the dialog box that appears, go to the Applications tab and click Add.
    • If you want to allow an application to launch hidden processes, go to the Processes tab and click Add in the upper area.
    • If you want to allow an application to access the network using rawsockets, go to the Processes tab and click Add in the lower area.
    The Firewall policy - Add application dialog box appears.
  5. If you are adding an application, in the Event type box, select whether you want to add a modified application, a new application, or an application for which there is no application rule set up in the firewall policy.
  6. Select an entry for the application you want to add or allow to launch hidden processes or use rawsockets, and click OK.
    The application is added to the firewall policy.

If you added an application on the Applications tab, the application is added as trusted. If you want, you can block it or create a custom rule for it.