No evidence that firewall is actually installed/running?!

Hi, I've had BitDefender Endpoint Security and GravityZone dumped in my lap and I'm struggling. I've created a policy and a package and deployed it to a host (with the agent) and the AV seems to work (at least it detected the Eicar pattern) but the Firewall? I can see no evidence that it's actually running.

The status tells me I'm protected, I have updates, new settings have been applied, antimalware enabled, etc, but In the policy I have firewall enabled and certain rules in place. However, there are services and ports listening on my server that are not specified in the Firewall, yet I can still telnet to them. It's almost as if the Firewall either isn't installed, settings aren't applied, or are just aping what the Windows firewall rules are doing.

Are there any firewall logs? How can I tell if this is working?

Thanks, Steve


Leave a Comment

Rich Text Editor. To edit a paragraph's style, hit tab to get to the paragraph menu. From there you will be able to pick one style. Nothing defaults to paragraph. An inline formatting menu will show up when you select text. Hit tab to get into that menu. Some elements, such as rich link embeds, images, loading indicators, and error messages may get inserted into the editor. You may navigate to these using the arrow keys inside of the editor and delete them with the delete or backspace key.