No evidence that firewall is actually installed/running?!
Hi, I've had BitDefender Endpoint Security and GravityZone dumped in my lap and I'm struggling. I've created a policy and a package and deployed it to a host (with the agent) and the AV seems to work (at least it detected the Eicar pattern) but the Firewall? I can see no evidence that it's actually running.
The status tells me I'm protected, I have updates, new settings have been applied, antimalware enabled, etc, but In the policy I have firewall enabled and certain rules in place. However, there are services and ports listening on my server that are not specified in the Firewall, yet I can still telnet to them. It's almost as if the Firewall either isn't installed, settings aren't applied, or are just aping what the Windows firewall rules are doing.
Are there any firewall logs? How can I tell if this is working?