This site is for AVG Business products only. For articles on Avast Business products, see Avast Business Help. If you are in the right place but cannot find what you are looking for, please contact AVG Business Support for further assistance.

Advanced Firewall Features

This Article Applies to:

  • AVG AntiVirus Business Edition
  • AVG Internet Security Business Edition


The advanced AVG firewall features, first introduced in the Antivirus version 21.11, can be viewed and managed in the Web & Email > Enhanced Firewall > Advanced section of the AVG Business client UI.

Here, you can use the toggles to enable/disable the following features:

  • Leak Protection: Helps protect the device from leaking potentially sensitive data by enabling packet rules to block certain types of communication.
  • Port Scan Alerts: Warns about detected hacker and/or malware attempts to scan the device for open ports.
  • ARP Spoofing Alerts: Warns about detected attempted Address Resolution Protocol spoofing attacks (when an attacker exploits the ARP to trick a device into communicating with an external device controlled by the attacker).

When Port Scan and ARP Spoofing alerts are enabled, the detection dialogs will offer the following options to the user:

  • Disconnect and block this network (recommended): Immediately disconnects from the current network and blocks any future connections to it. The Blocked message is displayed next to this network on the Network screen in Firewall settings.
  • Stay connected but block the suspicious device: Remains connected to the network while blocking the external device conducting ARP spoofing. This allows continued internet usage but is not recommended due to potential additional threats on the network. Blocked devices can be managed in the Firewall settings.
  • Ignore this potential threat — I trust this network: Takes no immediate action. It is not recommended unless the user is certain about the network's security.

Note that the advanced Firewall features are only activated in public (untrusted) networks.