norton antivirus behind firewall

In article , goose wrote: :I have a pc with norton antivirus 2005; that pc is in a lan, and should not :have access to the web.

What, more precisely, is "the web" ?

:I've dropped the port 80 outgoing from that pc, but now i'm not able to run :liveupdate.

Where are you expecting the PC to get it's NAV updates if not from "the web" ?

:what can I do? there's a way to change the port used from liveupdate?

If you are trying to fetch the updates from Norton, you'd need the cooperation of their machines in order to have them serve the information on some other port.

I think my request was not well expose; I'm sorry, but my english is not so good...I'll try to be more comprehensive:

"Walter Roberson" ha scritto nel messaggio news:d7nh4h$l7f$ snipped-for-privacy@canopus.cc.umanitoba.ca...

that pc should not be able to visit websites, so I've dropped the port 80 to block ie or other browser. I left open all the other usual port, so it's possible to use mail, ftp, ecc.

I thougt that perhaps nav may use severals services, and not only http...

this is true only if they haven't introduced an option in the client to let u chose other services different from http and their servers are listening all of them.

Well, OK, just block it.

Implementing the following ruleset will do the job:

Source Destination Port/Protocol Action

------------------------------------------------------- PC_1 ISP_DNS 53/udp (dns) allow PC_1 ISP_DNS 52/tcp (dns) allow PC_1 Norton_update_site_1 80/tcp (http) allow PC_1 Norton_update_site_2 80/tcp (http) allow PC_1 More_Norton_sites 80/tcp (http) allow PC_1 all all log PC_1 all all deny

Forget about that and configure your packet-filter according to the example given above.

Wolfgang

ok, thank you very much...

I'll try it next week...

have a nice weekend

"Wolfgang Kueter" ha scritto nel messaggio news: snipped-for-privacy@shc>