A list of authorized users can't be specified if the rule being authored is targeting a Windows service. Specifies the list of authorized local users for this rule. Designed and refined by a veteran Project and Program. This setting can only be configured via Intune Graph at this time. Download SG Project 5 for iOS to the Simple Genius brand means fresh design thinking for practical project management apps. New rules have the EdgeTraversal property disabled by default. The primary application of this setting allows listeners on the host to be globally addressable through a Teredo IPv6 address. In order for this setting to work correctly, the application or service with the inbound firewall rule needs to support IPv6. The EdgeTraversal setting indicates that specific inbound traffic is allowed to tunnel through NATs and other edge devices using the Teredo tunneling technology. Indicates whether edge traversal is enabled or disabled for this rule. Learn more Edge traversal (UI coming soon) An IPv6 address range in the format of "start address-end address" with no spaces included.If neither a subnet mask not a network prefix is specified, the subnet mask defaults to 255.255.255.255. A subnet can be specified using either the subnet mask or network prefix notation.LocalSubnet indicates any local address on the local subnet.Ply2Renders (supported on Windows versions 1809 ).Internet (supported on Windows versions 1809 ).RmtIntranet (supported on Windows versions 1809 ).Intranet (supported on Windows versions 1809 ).If present, this token must be the only one included. List of comma separated tokens specifying the remote addresses covered by the rule. An IPv4 address range in the format of "start address-end address" with no spaces included.If a subnet mask or a network prefix isn't specified, the subnet mask default is 255.255.255.255. Default is All.Ĭomma-separated list of local addresses covered by the rule. For custom protocols, enter a number between 0 and 255 representing the IP protocol.Ĭomma separated list of ranges. Transport layer protocols-TCP and UDP-allow you to specify ports or port ranges. Windows service short names are used in cases when a service, not an application, is sending or receiving traffic. Package family names can be retrieved by running the Get-AppxPackage command from PowerShell. The file path of an app is its location on the client device.įor example, C:\Windows\System\Notepad.exe. ApplicationĬontrol connections for an app or program.Īpps and programs can be specified either file path, package family name, or Windows service short name. The firewall rule configurations in Intune use the Windows CSP for Firewall. If a client device requires more than 150 rules, then multiple profiles must be assigned to it. A single Endpoint Protection profile may contain up to a maximum of 150 firewall rules.
0 Comments
Leave a Reply. |