Forum Discussion

Abhishek_Pandey's avatar
Abhishek_Pandey
Copper Contributor
Sep 03, 2020

Endpoint security | Firewall Configuration through Microsoft Endpoint Configuration Manager

Dear Team,   I want to Migrate the Firewall policies from McAfee to Windows Defender Firewall. Please suggest and share Migration tool and policy best-practices. Please share the configuration docu...
Thiago_Mota's avatar
Thiago_Mota
Copper Contributor
Sep 12, 2020

Abhishek_Pandey 

Hello, is not possible to migrate firewall rules from a third-party AV solution.

To create and apply firewall rules on client machines you need a GPO or Intune.

Just a recommendation, Windows Firewall works differently than others. The windows firewall "learns" automatically and creates his own rules for all software to work fine.

So is not necessary to have a policy with many rules and apply to all machines.

 

Abhishek_Pandey's avatar
Abhishek_Pandey
Copper Contributor
Sep 12, 2020

Thiago_Mota Thank you so much for the response. 

As of now I have created and applied the Windows Firewall through Intune with the Block inbound connections. Can we create any custom rules to allow the applications and remote connection or its learn and automatically create the rules.?

 

  • Thiago_Mota's avatar
    Thiago_Mota
    Copper Contributor
    Sep 14, 2020

    Abhishek_Pandey You can do both. It works together, as "merged". When you apply a custom rule by intune it will add to the current rules already applied to the machine that it was "learned" before.

    Also, you can disable "local rules". So all the rules that the machine have "learned" before will be dismissed, and will only have the custom rules applied remotely by Intune.

    I don't know if I was clear.

Resources