Firewall: Network Settings

This Article Applies to:

  • Business Hub
  • Avast Business On-Premise Console

Firewall is another major component of protection offered in Avast Business Antivirus alongside the Active Protection Shields.

Firewall monitors all network traffic between devices and the outside world to protect you from unauthorized communication and intrusions. The two profiles you can assign to defined networks are:

  • Private (Trusted)—Provides a lower level of security
  • Public (Not trusted)—Provides a higher level of security

We recommend you apply the Public profile to all networks that are not your private network, such as when you connect to the Internet in a café or at an airport. Network profiles are one of the rule matching attributes, meaning rules for private profiles are not active when connected to a network classified as public and vice versa. Rules can be set to only apply to one profile, or both.

In the Business Hub and Cloud Console, there is an option to Disable the network profiles management by this console. Turning the toggle on would allow each end user to configure their own network profiles and defined networks.

Business Hub and Avast Business Cloud Console

Avast Business On-Premise Console

Defined Networks

You can manually define various networks as long as you have the MAC address of the router(s), ensuring they are always listed as Public or Private based on what you choose. Click Add Network, enter the network name, MAC address, and the profile, and click Add.

Advanced Settings

Internet Connection Sharing mode: this option will allow a trusted user to connect to the internet through your PC and/or connect to devices connected to the internet via your PC. This opens additional ports, which could be a security concern.

Allow all connections with Friends when in private mode: when you are connected to a Private (Trusted) network, you can allow connections with networks listed as Friends.

(On-Premise Console only) Disable the new way of controlling network profiles: this option will allow the local user to control network profiles completely, meaning they select Private or Public for any networks they come across. This could be a security concern, particularly if the local user tends to travel and uses many public networks. Enabling or disabling this option requires a restart on the devices under the policy you are modifying.