Solved: Secure Endpoint, allow internet access while computer is isolated?

hank hale · ‎09-25-2024

Is it possible to put a machine in isolation, to keep it off our internal network, but still allow the machine to access the internet? I have built an IP Block List with our internal IPs, but we would want our end users to be able to access the internet if moved to this policy. Long story short, it is a policy to put traveling staff into, should their machine become compromised, as a temp fix until we are able to address the issue.

Thanks

Matthew Franks · ‎09-26-2024

You couldn't achieve this with endpoint isolation since it is meant to stop the endpoint from communicating with anything other than the Secure Endpoint servers. What you can do is move them to a policy with the IP Blacklist in place rather than isolating them if you see an issue where they would normally be isolated. I would caution against this approach since it would allow any malicious code to reach out to additional resources.

Thanks,

Matt

View solution in original post

Matthew Franks · ‎09-26-2024

You couldn't achieve this with endpoint isolation since it is meant to stop the endpoint from communicating with anything other than the Secure Endpoint servers. What you can do is move them to a policy with the IP Blacklist in place rather than isolating them if you see an issue where they would normally be isolated. I would caution against this approach since it would allow any malicious code to reach out to additional resources.

Thanks,

Matt

hank hale · ‎09-26-2024

Thanks Matt!