Endpoint: Windows Firewall

You can monitor and configure Windows Firewall (and monitor other registered firewalls) on your computers using a Windows Firewall base policy.

Warning Other firewalls or your Windows Group Policy settings may affect how the base policy is applied on individual computers. We advise that you test any firewall rules you create (locally or via Group Policy) to make sure that communication with Sophos is allowed.

In Monitor Type, select the level of monitoring you want:

Monitor Only

Devices will report their firewall status to Sophos Central Admin. This is the default option.

Monitor & Configure Network Profiles

Devices will report their firewall status to Sophos Central Admin. You can also choose whether to block or allow inbound connections on Domain Networks, Private Networks and Public Networks. Choose from:

  • Block All
  • Block (with exceptions): You must set up the exceptions locally on the computer or server. If you don't set up exceptions all inbound connections are blocked.
  • Allow All