https://community.checkpoint.com/t5/Endpoint/Windows-Firewall-Rules-created-by-Endpoint-Security/m-p/37349#M927 <HTML><HEAD></HEAD><BODY><P>sk102711: Tracsrvwrapper is one of the components of the Windows VPN client that is responsible for client side authentication and connection with VPN service. TrGUI is the Check Point Endpoint Security VPN GUI (see sk113492 and Task Manager).</P><P></P><P>Uses for these rules that come to my mind would be EPS client updates (that could be enforced) and changes made to <SPAN style="font-family: Courier New;"><STRONG>trac_client_1.ttm on GW (topology is written in the <CODE>trac.config</CODE> file, located on the client machine)</STRONG></SPAN></P></BODY></HTML> Mon, 20 Aug 2018 13:43:15 GMT G_W_Albrecht 2018-08-20T13:43:15Z https://community.checkpoint.com/t5/Endpoint/Windows-Firewall-Rules-created-by-Endpoint-Security/m-p/37346#M924 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>When Endpoint Security Client is installed two inbound rules are created in Windows Defender firewall with advanced security. These two rules are :</P><P></P><P>- Check Point Endpoint Security VPN Service</P><P>-&nbsp;Check Point Endpoint Security VPN GUI</P><P></P><P>These rules allow any inboud traffic for&nbsp;TracSrvWrapper.exe and TrGUI.exe for all profiles (Domain, private and public).</P><P></P><P>On my test machine, I've disabled both rules and VPN still works as expected.</P><P>So what these rules are for ?</P><P></P><P>Kind regards,</P><P></P><P>Michel</P></BODY></HTML> Tue, 10 Jul 2018 08:13:04 GMT https://community.checkpoint.com/t5/Endpoint/Windows-Firewall-Rules-created-by-Endpoint-Security/m-p/37346#M924 Michel_Leclerc 2018-07-10T08:13:04Z https://community.checkpoint.com/t5/Endpoint/Windows-Firewall-Rules-created-by-Endpoint-Security/m-p/37347#M925 <HTML><HEAD></HEAD><BODY><P>I assume those rules would be useful if for some reason you chose not to use the firewall included with the Endpoint Security client, which is most likely enforcing its policy instead.</P></BODY></HTML> Fri, 13 Jul 2018 10:42:55 GMT https://community.checkpoint.com/t5/Endpoint/Windows-Firewall-Rules-created-by-Endpoint-Security/m-p/37347#M925 PhoneBoy 2018-07-13T10:42:55Z https://community.checkpoint.com/t5/Endpoint/Windows-Firewall-Rules-created-by-Endpoint-Security/m-p/37348#M926 <HTML><HEAD></HEAD><BODY><P>We have Windows Defender Firewall activated. On the checkpoint client side Firewall is also enabled and policy is set to default if not connected and to to personalized if connected.</P><P>Not clear for me how these two firewalls interact.</P></BODY></HTML> Mon, 20 Aug 2018 13:03:44 GMT https://community.checkpoint.com/t5/Endpoint/Windows-Firewall-Rules-created-by-Endpoint-Security/m-p/37348#M926 Michel_Leclerc 2018-08-20T13:03:44Z https://community.checkpoint.com/t5/Endpoint/Windows-Firewall-Rules-created-by-Endpoint-Security/m-p/37349#M927 <HTML><HEAD></HEAD><BODY><P>sk102711: Tracsrvwrapper is one of the components of the Windows VPN client that is responsible for client side authentication and connection with VPN service. TrGUI is the Check Point Endpoint Security VPN GUI (see sk113492 and Task Manager).</P><P></P><P>Uses for these rules that come to my mind would be EPS client updates (that could be enforced) and changes made to <SPAN style="font-family: Courier New;"><STRONG>trac_client_1.ttm on GW (topology is written in the <CODE>trac.config</CODE> file, located on the client machine)</STRONG></SPAN></P></BODY></HTML> Mon, 20 Aug 2018 13:43:15 GMT https://community.checkpoint.com/t5/Endpoint/Windows-Firewall-Rules-created-by-Endpoint-Security/m-p/37349#M927 G_W_Albrecht 2018-08-20T13:43:15Z