{"id":2669,"date":"2024-03-27T13:44:26","date_gmt":"2024-03-27T12:44:26","guid":{"rendered":"https:\/\/kb.apptec360.com\/manual\/?post_type=knowledgebase&#038;p=2669"},"modified":"2024-05-03T15:13:38","modified_gmt":"2024-05-03T13:13:38","slug":"firewall-rules","status":"publish","type":"knowledgebase","link":"https:\/\/kb.apptec360.com\/manual\/knowledgebase\/configuration-windows-10-pc\/general\/security-management\/security-configuration\/firewall-rules\/","title":{"rendered":"Firewall Rules"},"content":{"rendered":"\n<table id=\"tablepress-295\" class=\"tablepress tablepress-id-295\">\n<caption style=\"caption-side:bottom;text-align:left;border:none;background:none;margin:0;padding:0;\"><a href=\"https:\/\/kb.apptec360.com\/manual\/wp-admin\/admin.php?page=tablepress&amp;action=edit&amp;table_id=295\" rel=\"nofollow\">Edit<\/a><\/caption>\n<tbody class=\"row-hover\">\n<tr class=\"row-1 odd\">\n\t<td colspan=\"3\" class=\"column-1\" style=\"text-align: center;\"><br>\n        <p><strong>Firewall Rules<\/strong><\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-2 even\">\n\t<td colspan=\"2\" class=\"column-1\"><br>\n        <p>Name<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>Name of the rule<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-3 odd\">\n\t<td colspan=\"2\" class=\"column-1\"><br>\n        <p>Description<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>Description of the rule<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-4 even\">\n\t<td colspan=\"2\" class=\"column-1\"><br>\n        <p>Action<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>Specify whether this rule will block the traffic, or allow it. Please consider that the Block option could also block the traffic (depending of the rest of the configuration) between the MDM server and the Device<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-5 odd\">\n\t<td colspan=\"3\" class=\"column-1\"><br>\n        <p>Direction<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-6 even\">\n\t<td class=\"column-1\"><\/td><td class=\"column-2\"><br>\n        <p>Enable Edge traversal (Only available when <strong>Direction<\/strong> is set to <strong>inbound traffic<\/strong>)<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>Indicates that specific inbound traffic is allowed to tunnel throughout NAT&#8217;s and other edge devices using the Teredo tunneling technology.<\/p><br>\n      <\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n\n\n\n<table id=\"tablepress-296\" class=\"tablepress tablepress-id-296\">\n<caption style=\"caption-side:bottom;text-align:left;border:none;background:none;margin:0;padding:0;\"><a href=\"https:\/\/kb.apptec360.com\/manual\/wp-admin\/admin.php?page=tablepress&amp;action=edit&amp;table_id=296\" rel=\"nofollow\">Edit<\/a><\/caption>\n<tbody class=\"row-hover\">\n<tr class=\"row-1 odd\">\n\t<td colspan=\"3\" class=\"column-1\" style=\"text-align: center;\"><br>\n        <p><strong>Programs &amp; services<\/strong><\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-2 even\">\n\t<td colspan=\"2\" class=\"column-1\"><br>\n        <p>Define applications, all otherwise<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>If not enabled, then it will consider all applications<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-3 odd\">\n\t<td class=\"column-1\"><\/td><td class=\"column-2\"><br>\n        <p>Package Family Name<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>The Package Family Name that the rule will apply to.<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-4 even\">\n\t<td class=\"column-1\"><\/td><td class=\"column-2\"><br>\n        <p>File path of the application<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>The full application such as C:\\Windows\\System\\Notepad.exe that the rule will apply to<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-5 odd\">\n\t<td class=\"column-1\"><\/td><td class=\"column-2\"><br>\n        <p>Fully Qualified Binary Name<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>The Fully Qualified Binary Name that the rule will apply to. A FQBN is a string in the following form: {Publisher\\Product\\Filename,Version}<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-6 even\">\n\t<td class=\"column-1\"><\/td><td class=\"column-2\"><br>\n        <p>Service Name<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>Enter the name of a Service (e.g &#8220;EventLog&#8221;). You can get a list of Service Names on Powershell by running the command &#8220;Get-Service&#8221;.<\/p><br>\n      <\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n\n\n\n<div class=\"pagebreak-after\"><\/div>\n\n\n\n<table id=\"tablepress-297\" class=\"tablepress tablepress-id-297\">\n<caption style=\"caption-side:bottom;text-align:left;border:none;background:none;margin:0;padding:0;\"><a href=\"https:\/\/kb.apptec360.com\/manual\/wp-admin\/admin.php?page=tablepress&amp;action=edit&amp;table_id=297\" rel=\"nofollow\">Edit<\/a><\/caption>\n<tbody class=\"row-hover\">\n<tr class=\"row-1 odd\">\n\t<td colspan=\"5\" class=\"column-1\" style=\"text-align: center;\"><br>\n        <p><strong>Protocols &amp; ports<\/strong><\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-2 even\">\n\t<td rowspan=\"6\" class=\"column-1\"><br>\n        <p>Protocol<\/p><br>\n      <\/td><td colspan=\"4\" class=\"column-2\"><br>\n        <p>The protocol used by the rule.<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-3 odd\">\n\t<td rowspan=\"5\" class=\"column-2\"><br>\n        <p>Available values:<\/p><br>\n        <p>&#8211; Any<\/p><br>\n        <p>&#8211; Custom<\/p><br>\n        <p>&#8211; HOPORT<\/p><br>\n        <p>&#8211; ICMPv4<\/p><br>\n        <p>&#8211; IGMP<\/p><br>\n        <p>&#8211; TCP<\/p><br>\n        <p>&#8211; UDP<\/p><br>\n        <p>&#8211; IPv6<\/p><br>\n        <p>&#8211; IPv6-Route<\/p><br>\n        <p>&#8211; IPv6-Frag<\/p><br>\n        <p>&#8211; GRE<\/p><br>\n        <p>&#8211; ICMPv6<\/p><br>\n        <p>&#8211; IPv6-NoNxt<\/p><br>\n        <p>&#8211; IPv6-Opts<\/p><br>\n        <p>&#8211; VRRP<\/p><br>\n        <p>&#8211; PGM<\/p><br>\n        <p>&#8211; L2TP<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>When set to Custom<\/p><br>\n      <\/td><td class=\"column-4\"><br>\n        <p>Insert a protocol number between 0 and 255<\/p><br>\n      <\/td><td class=\"column-5\"><br>\n        <p>The protocol number<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-4 even\">\n\t<td rowspan=\"4\" class=\"column-3\"><br>\n        <p>When set to TCP or UDP<\/p><br>\n      <\/td><td class=\"column-4\"><br>\n        <p>Specify local ports, all will be used otherwise<\/p><br>\n      <\/td><td class=\"column-5\"><br>\n        <p>Local ports that the rule will use, range ports are also allowed<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-5 odd\">\n\t<td class=\"column-4\"><br>\n        <p>Local Port<\/p><br>\n      <\/td><td class=\"column-5\"><br>\n        <p>Single port or a range of ports. E.g. 100-120,200,300-320.<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-6 even\">\n\t<td class=\"column-4\"><br>\n        <p>Specify remote ports, all will be used otherwise<\/p><br>\n      <\/td><td class=\"column-5\"><br>\n        <p>Remote ports that the rule will use, range ports are also allowed<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-7 odd\">\n\t<td class=\"column-4\"><br>\n        <p>Remote Port<\/p><br>\n      <\/td><td class=\"column-5\"><br>\n        <p>Single port or a range of ports. E.g. 100-120,200,300-320.<\/p><br>\n      <\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n\n\n\n<table id=\"tablepress-298\" class=\"tablepress tablepress-id-298\">\n<caption style=\"caption-side:bottom;text-align:left;border:none;background:none;margin:0;padding:0;\"><a href=\"https:\/\/kb.apptec360.com\/manual\/wp-admin\/admin.php?page=tablepress&amp;action=edit&amp;table_id=298\" rel=\"nofollow\">Edit<\/a><\/caption>\n<tbody class=\"row-hover\">\n<tr class=\"row-1 odd\">\n\t<td colspan=\"3\" class=\"column-1\"><br>\n        <p><strong>Scope<\/strong><\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-2 even\">\n\t<td colspan=\"2\" class=\"column-1\"><br>\n        <p>Specify local IPs, any IP otherwise<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>Set of local IPs, it can be also a range of IPs separated by &#8211;<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-3 odd\">\n\t<td class=\"column-1\"><\/td><td class=\"column-2\"><br>\n        <p>Local IP address<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>Set of single IPs or a range of IPs separated by &#8211;<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-4 even\">\n\t<td colspan=\"2\" class=\"column-1\"><br>\n        <p>Specify remote IPs, any remote IP otherwise<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>Specify a set of remote IPs, it can be also a range of IPs separated by &#8220;-&#8220;.<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-5 odd\">\n\t<td class=\"column-1\"><\/td><td class=\"column-2\"><br>\n        <p>Remote IP address<\/p><br>\n      <\/td><td class=\"column-3\"><br>\n        <p>Specify single IPs or a range of IPs<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-6 even\">\n\t<td class=\"column-1\"><\/td><td class=\"column-2\"><br>\n        <p>Tokens<\/p><br>\n      <\/td><td class=\"column-3\" style=\"text-align: center;\"><br>\n        <p>Tokens that can be set along with Remote Addresses. Tokens Intranet, RmtIntranet and Ply2Renders are supported in Windows 10, version 1809 and later.<\/p><br>\n      <\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n\n\n\n<table id=\"tablepress-299\" class=\"tablepress tablepress-id-299\">\n<caption style=\"caption-side:bottom;text-align:left;border:none;background:none;margin:0;padding:0;\"><a href=\"https:\/\/kb.apptec360.com\/manual\/wp-admin\/admin.php?page=tablepress&amp;action=edit&amp;table_id=299\" rel=\"nofollow\">Edit<\/a><\/caption>\n<tbody class=\"row-hover\">\n<tr class=\"row-1 odd\">\n\t<td colspan=\"2\" class=\"column-1\" style=\"text-align: center;\"><br>\n        <p><strong>Advanced Settings<\/strong><\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-2 even\">\n\t<td class=\"column-1\"><br>\n        <p>Specify profiles, all will be used otherwise<\/p><br>\n      <\/td><td class=\"column-2\"><br>\n        <p>If disabled all profiles will be used<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-3 odd\">\n\t<td class=\"column-1\"><br>\n        <p>Domain<\/p><br>\n      <\/td><td class=\"column-2\"><br>\n        <p>Domain Profile<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-4 even\">\n\t<td class=\"column-1\"><br>\n        <p>Private<\/p><br>\n      <\/td><td class=\"column-2\"><br>\n        <p>Private Profile<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-5 odd\">\n\t<td class=\"column-1\"><br>\n        <p>Public<\/p><br>\n      <\/td><td class=\"column-2\"><br>\n        <p>Public Profile<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-6 even\">\n\t<td class=\"column-1\"><br>\n        <p>Specify interfaces, all will be used otherwise<\/p><br>\n      <\/td><td class=\"column-2\"><br>\n        <p>If disabled all interfaces will be used<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-7 odd\">\n\t<td class=\"column-1\"><br>\n        <p>Local Area Network<\/p><br>\n      <\/td><td class=\"column-2\"><br>\n        <p>Local Area Network interface<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-8 even\">\n\t<td class=\"column-1\"><br>\n        <p>Remote Access<\/p><br>\n      <\/td><td class=\"column-2\"><br>\n        <p>Remote Access interface<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-9 odd\">\n\t<td class=\"column-1\"><br>\n        <p>Wireless<\/p><br>\n      <\/td><td class=\"column-2\"><br>\n        <p>Wireless interface<\/p><br>\n      <\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n\n\n\n<table id=\"tablepress-300\" class=\"tablepress tablepress-id-300\">\n<caption style=\"caption-side:bottom;text-align:left;border:none;background:none;margin:0;padding:0;\"><a href=\"https:\/\/kb.apptec360.com\/manual\/wp-admin\/admin.php?page=tablepress&amp;action=edit&amp;table_id=300\" rel=\"nofollow\">Edit<\/a><\/caption>\n<tbody class=\"row-hover\">\n<tr class=\"row-1 odd\">\n\t<td colspan=\"2\" class=\"column-1\" style=\"text-align: center;\"><br>\n        <p><strong>Local Principals<\/strong><\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-2 even\">\n\t<td class=\"column-1\"><br>\n        <p>Add authorized local users<\/p><br>\n      <\/td><td class=\"column-2\"><br>\n        <p>Allow to add a list of local users that will use this rule<\/p><br>\n      <\/td>\n<\/tr>\n<tr class=\"row-3 odd\">\n\t<td class=\"column-1\"><br>\n        <p>Authorized users<\/p><br>\n      <\/td><td class=\"column-2\"><br>\n        <p>List of authorized local users for this rule. The user must be in Security Description Definition language (SDDL) format, e.g. PC_NAME\\USERNAME. This field must not be filled if a service name is set to use this rule<\/p><br>\n      <\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n\n\n\n<div class=\"pagebreak-after\"><\/div>\n","protected":false},"parent":2621,"menu_order":0,"template":"","class_list":["post-2669","knowledgebase","type-knowledgebase","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/kb.apptec360.com\/manual\/wp-json\/wp\/v2\/knowledgebase\/2669","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kb.apptec360.com\/manual\/wp-json\/wp\/v2\/knowledgebase"}],"about":[{"href":"https:\/\/kb.apptec360.com\/manual\/wp-json\/wp\/v2\/types\/knowledgebase"}],"version-history":[{"count":9,"href":"https:\/\/kb.apptec360.com\/manual\/wp-json\/wp\/v2\/knowledgebase\/2669\/revisions"}],"predecessor-version":[{"id":6928,"href":"https:\/\/kb.apptec360.com\/manual\/wp-json\/wp\/v2\/knowledgebase\/2669\/revisions\/6928"}],"up":[{"embeddable":true,"href":"https:\/\/kb.apptec360.com\/manual\/wp-json\/wp\/v2\/knowledgebase\/2621"}],"wp:attachment":[{"href":"https:\/\/kb.apptec360.com\/manual\/wp-json\/wp\/v2\/media?parent=2669"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}