Firewall policies Flashcards
(28 cards)
What are the three profile types you can choose when configuring Windows Defender Firewall?
- Windows Firewall
- Windows Firewall rules
- Windows Hyper-V Firewall Rules
What does Windows Firewall provide?
Host-based, two-way network traffic filtering for a device
What is the purpose of Windows Firewall?
To block unauthorized network traffic flowing into or out of the local device
What can Windows Firewall rules define?
Granular Firewall rules, including specific ports, protocols, applications, and networks
How many custom rules does each instance of the Windows Firewall profile support?
Up to 150 custom rules
What does the Windows Hyper-V Firewall Rules template allow you to control?
Firewall rules that apply to specific Hyper-V containers on Windows
Which applications are included in the Windows Hyper-V Firewall Rules?
Windows Subsystem for Linux (WSL) and Windows Subsystem for Android (WSA)
Fill in the blank: Windows Firewall provides _______ network traffic filtering.
[host-based, two-way]
True or False: Windows Firewall can block authorized network traffic.
False
What are the 7 steps to implement Windows Defender Firewall in Intune ?
- Go to Endpoint security > Firewall, select Create Policy.
- Platform : Windows.
- Profile : Windows Firewall
- Name + Description
-
Configuration settings
■ Firewall Determines the fundamental state of the firewall for domain, private, and public network location profiles
■ Auditing Defines the required firewall auditing settings
■ Network List Manager, which defines TLS endpoint settings - Scope tags
- Assignments
What are the 7 steps to implement Windows Firewall rules in Intune ?
- Go to Endpoint security > Firewall, select Create Policy.
- Platform : Windows.
- Profile : Windows Firewall Rules
- Name + Description
-
Configuration settings
■ State (enabled or disabled)
■ Name
■ Interface Types
■ Remote Port Ranges
■ Action (Allow or Block)
■ Protocol - Scope tags
- Assignments
What is the firewall profile you can configure on macOS devices?
MacOS Firewall
For macOS firewall policy, what are the 2 options to configure (configuration settings)?
- Firewall
- Applications
they are under networking
For macOS firewall policy, in Firewall, what are the 5 settings you can configure?
- Enable Stealth Mode
- Enable Firewall
- Allow Signed : If true, allows built-in software to receive incoming connections
- Block All Incoming
- Allow Signed App
For macOS firewall policy, in Applications, what can be configure?
By application Bundle ID, configure the allowed connection for the app
What do Firewall policy reports display?
Status details about the firewall status for managed devices
Supports devices running Windows 10/11
What is the default view when opening the Firewall node in Microsoft Intune?
Summary
Accessed via Endpoint security > Firewall > Summary
What information does the Firewall Summary view provide?
Aggregate count of devices with firewall off and a list of Firewall policies including:
* Name
* Type
* Assignment status
* Last modified date
Where can you find the report for MDM devices running Windows 10 or later with the firewall off?
Endpoint security node > Firewall > MDM devices running Windows 10 or later with firewall off
Accessed via Endpoint security > Firewall > MDM devices running Windows 10 or later with firewall off
What is the purpose of the MDM Firewall status for Windows 10 and later report?
To provide organizational status details about firewall settings
Accessed via Reports > Firewall > MDM Firewall status for Windows 10 and later
What are the possible statuses in the MDM Firewall status report?
Statuses include:
* Enabled
* Disabled
* Limited
* Temporarily Disabled
* Not applicable
What does the ‘Enabled’ status indicate in the MDM Firewall status report?
The firewall is on and successfully reporting
What does the ‘Disabled’ status indicate in the MDM Firewall status report?
The firewall is turned off
What does the ‘Limited’ status indicate in the MDM Firewall status report?
The firewall isn’t monitoring all networks or some rules are turned off
