Letting Users Disable the Firewall

You can configure if Endpoint Security VPN users can choose to disable the firewall policy on their local machines.

If this option is enabled, when users right-click the Remote Access Clients icon, they can select Disable Security Policy.

To change the Allow disable firewall setting:

  1. Edit the $FWDIR/conf/trac_client_1.ttm file on the Security Gateway.

  2. Find the line :allow_disable_firewall and set the applicable value:

    • true - Users can disable their firewall policy.

    • false- Users do not have the option to disable their firewall policy.

    • client_decide - Takes the value from a file on the client machine

  3. Save the file.

  4. Install the policy.