Forum Discussion

Anonymous's avatar
Anonymous
Jul 16, 2019

Security baseline with Hyper-V default switch

Continued from old TechNet blog discussion...   Thanks Aaron Margosis. I've figured out what is preventing clipboard file copying. It is the GPO setting "Do not allow drive redirection" (Computer C...
mattgailer's avatar
mattgailer
Copper Contributor
Aug 06, 2021

Deleted did you ever figure out what in the Security Baseline was blocking the "Default Switch" in Windows 10 Hyper-V to allow the virtual machines to have internet access? I am really wanting to have an environment where the Security Baseline is applied, but need the same capability you have mentioned. I don't want to do the workaround of creating another external Virtual Switch, as I've actually found that has impacted internet connectivity bandwidth on the host device.

Anonymous's avatar
Anonymous
Aug 06, 2021

mattgailer I believe it was an inbound firewall issue.

 

The Security Baseline disables local firewall rules for Public networks, so the auto-generated Hyper-V Container Networking allow rules (inbound) aren't applied - you'll have to manually allow UDP inbound on local ports 53, 67, 68 via GPO or allow local firewall rules.

 

From memory that was the only issue, and things like ''Prohibit use of Internet Connection Sharing on your DNS domain network'' are fine to leave as Enabled.

 

Hope that helps!