Hi,
Is there any way of restoring a firewall configuration on a local PC that has been overwritten by the transfer of a configuration from Enterprise Console?
Thanks,
Joe
This thread was automatically locked due to age.
While 2.0 brought a number of improvements - one of them the facility to configure firewall policies using the event viewer - some issues are still open in different areas. I will mention some of them here in a single post.
No suggestions made at this point - I just trying to instigate some discussion
Christian
Just some extra information about the circumstances. The PC is used by a member of the IT staff and he adjusts the firewall as he sits fit hence that's why he has his own configuration. The PC was being updated from Sophos 7 to Sophos 9 when the configuration was overwritten.
This is not the first time I've mistakely overwritten a custom configuration. And I know I should have a backup, etc. but the mechanism for ensuring the configuration in Enterprise Console is a little clunky. As far as I know, and I'm happy to be corrected, I would have to remember (in my head or on some paper) the target PC has a custom configuration, go to the PC and obtain the configuration and then import it into Enterprise Console. It would be nice if Enterprise Console could do this for you. I suppose a bare minimum of an improvement might be a check by Enterprise Console to say the target PC has a custom configuration and halt the updating. Then you have the opportunity to import/backup the custom configuration or decide to overwrite it.
Joe
Don't assume the guys at Sophos haven't used the brains :smileywink:. If you think it through you'll always end up with contradicting requirements. "Custom configuration" would be "interactive" mode. Once you set it for a larger group of endpoints you might get stuck . Remember - policies apply to groups and now you might face the problem how to reset this setting (without again affecting the "wrong" endpoint(s).
In my opinion the best solution for the moment would be an additional management server. (For the hardcore hackers: unless you put the RMS configuration in your CID you can use your regular update location and get rid of SUM on the additional management server - it comes with a price though)
Christian