Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Determining the need to create a firewall rule for communication between the Deep Security Manager and agents

    • Updated:
    • 7 Oct 2015
    • Product/Version:
    • Deep Security 8.0
    • Platform:
    • Windows 2000 Professional
    • Windows 2003 Standard Server Edition
    • Windows 2008 Standard Server Edition
    • Windows Vista 32-bit
    • Windows XP Home
Summary

When configuring the Firewall Rules for the protected host, you are unable to see any out of the box rule for allowing communication between the Deep Security Manager and Agent.

Details
Public

To enable the communication between the Manager and the Agents, the Manager automatically implements a (hidden) Firewall Rule (priority four, Bypass), which opens port 4118 on the Agents to incoming TCP/IP traffic.

The default settings open the port to any IP address and any MAC address.

You can restrict incoming traffic on this port by creating a new priority 4, Force Allow or Bypass Firewall Rule, which only allows incoming TCP/IP traffic from specific IP and/or MAC address.

This new firewall Rule will replace the hidden one if the settings match the following:

Filter Action: Force Allow or Bypass
Priority: 4 - Highest
Packet Direction: Incoming
Frame Type: IP
Protocol: TCP
Packet Destination Port: 4118

As long as these settings are in effect, the new filter will replace the one which is hidden. You can then enter Packet Source information for IP and/or MAC addresses to restrict traffic to the host.

Premium
Internal
Rating:
Category:
Configure
Solution Id:
1054486
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.