RMM EDR is currently only supported for Windows devices. The EDR integration will allow selection of macOS and Linux operating systems however as EDR is yet to be supported on those operating systems, no EDR Policy will apply to macOS and Linux devices.
Network Control lets you manage endpoint firewall settings from your SolarWinds Management Console. Use Firewall Control to define which network traffic, applications, and connections are allowed in and out of endpoints.
Firewall Control changes starting from version Liberty:
- Go to the Network Control tab page for a selected EDR Policy
- Use one unified rule base for all Operating Systems. Each rule in the rule base can apply to one or more operating systems
- Create Tags that represent Firewall policies. Add rules to the Tags. After you set up a Tag, it functions as a policy - a set of rules in a specific order
- Manage inheritance with granular inheritance modes. Rules can be fully inherited, not inherited, or inherited based on tags. Firewall On or Off status is separated from rule inheritance.
- Apply rules based on an endpoint's location.
- Use the new Description field in rules to add details. If a rule had a "tag" from a version before Liberty, that string is moved to the Description field when upgraded to Liberty.
Note: Location Awareness was available in earlier versions but disabled by default. It is now enabled for all environments. Make sure locations in your rules are configured correctly or delete locations from your rules.
Important to know when you enable Network Control:
- There are no default rules. All traffic is allowed if you do not block it explicitly.
- When Network Control is enabled on Windows endpoints, it becomes the active firewall. Network Control takes control but it does not change rules from other firewall solutions on the endpoint.