Home Support

Setting up Enhanced Firewall packet rules in AVG Internet Security

Enhanced Firewall is a component of AVG Internet Security that uses specified connection parameters, known as packet rules, to control network traffic. Packet rules enable you to control whether network traffic is allowed or blocked according to the information contained in network packets. This information may include network protocols, source or destination IP addresses, and local or remote ports.

We recommend you only make alterations to packet rules if you have advanced knowledge of firewall concepts. Enhanced Firewall is already configured to provide the appropriate firewall protection in most cases.

Review packet rules

Default packet rules provide the extra security needed when your Enhanced Firewall network profile is set to public, which is the network profile you should use when you are connected to a public network, such as in a cafe or at an airport. Other predefined packet rules are created when you change the rule on the main system rules screen. To open Packet rules:

  1. Open the AVG Internet Security user interface and click the Hacker Attacks tile.
  2. Click Settings (the gear icon) in the top-right corner.
  3. Ensure Full protectionEnhanced Firewall is selected in the left panel, then click Packet Rules.

Your current Packet rules appear. Each packet rule is defined by the following fields:

  • Enabled: Indicates whether the rule is active.
  • Name: Displays the name of the rule.
  • Action: Indicates whether the rule allows or blocks the corresponding traffic.
  • Protocol: Indicates the network protocol used by the corresponding traffic. One protocol may be selected, or All if the rule applies to all protocols. The most common protocols are at the top of the drop-down menu.
  • Direction: Indicates whether the rule applies to incoming (In) or outgoing (Out) connections, or to connections in both directions (In/Out). For TCP, UDP, or ICMP protocols, this field corresponds to the direction of the first received packet only.
  • Address: Indicates the source or destination IP address the rule applies to. The rule may apply to a single IP address, multiple IP addresses (separated by commas), or an IP address range (starting with the lowest IP address and separated with a dash). If the field is blank, the rule applies to all IP addresses.
  • Local port: Indicates whether the rule applies to connections which use the specified network port number on the local IP address of your PC's network interface. The rule may apply to a single port number, multiple ports (separated by commas), or a port range (starting with the lowest port number and separated with a dash). If the field is blank, the rule applies to all local ports.
  • Remote port: Indicates whether the rule applies to connections which use the specified network port number on the remote IP address of the external server or another network device. The rule may apply to a single port number, multiple ports (separated by commas), or a port range (starting with the lowest port number and separated with a dash). If the field is blank, the rule applies to all remote ports.
  • ICMP type: Indicates the control message (represented by a code number) that the rule applies to. The rule may apply to a single code number, or multiple codes (separated by commas). This option is only available for connections based on the Internet Control Message Protocol. The code numbers of control messages are listed in the technical specifications of the ICMP (RFC 792).
  • Profile: Indicates whether the rule applies when your Firewall is in Public, Private, or both (All) Firewall network profiles.
Certain fields are not applicable depending on the Protocol setting, as availability of certain packet rule parameters depends on the technical specifications of protocols.

Refer to the section below for instructions to customize packet rules.

Customize packet rules

From the Packet rules screen, you can perform the following actions:

  • Add a new packet rule: Scroll to the bottom of the packet rules list and click Add, then in the new row that appears, edit the packet rule fields as necessary.
  • Delete an existing packet rule: Click the relevant row to select a rule, then click Remove.
  • Modify an existing packet rule: Click the relevant row to select a rule, then edit the packet rule fields as necessary.
  • Change packet rule priorities: Packet rules are listed in order of priority, which means that although multiple rules may relate to one packet, the rule which appears highest in the table is always applied first. Click the relevant row to select a rule, then click Move up or Move down to adjust the priority of the selected rule.

Click OK at the bottom of the screen to confirm any changes and return to the Enhanced Firewall settings screen.

  • AVG Internet Security 20.x
  • Microsoft Windows 10 Home / Pro / Enterprise / Education - 32 / 64-bit
  • Microsoft Windows 8.1 / Pro / Enterprise - 32 / 64-bit
  • Microsoft Windows 8 / Pro / Enterprise - 32 / 64-bit
  • Microsoft Windows 7 Home Basic / Home Premium / Professional / Enterprise / Ultimate - Service Pack 1, 32 / 64-bit

Was this article helpful?

Still looking for answers ?

Visit our AVG Support Community or contact us here: