Device Network Isolation

Contents

Device Network Isolation

Description

With 2 dedicated Nexthink Act remote actions, create a backup of current firewall policy and restrict network access, or restore original configuration from a firewall policy backup file.

Platforms

  • Windows 7
  • Windows 10

License modules

  • Nexthink Act.
  • Nexthink Engage.

Compatibility

  • Nexthink V6.14 and later.

Script Disable Device Network Isolation

  • Version 1.0.0.0 - Initial release

Script Description

Imports backup of Windows Firewall policy from location %ProgramData%\Nexthink\RA_Firewall. Once completed, campaign is called to inform user about enforced restriction. Script is developed for Windows 7 and 10.

Execution context and suggested scheduling

Run the script manually as local system.

Parameters

ID Label Description
1 CampaignId UID of the campaign to be presented after completion of the script

Outputs

None.

Further Information

Network restore will not work if organisation uses Group Policy to control Windows Firewall, or Firewall backup file was removed.

Script Enable Device Network Isolation

  • Version 1.0.0.0 - Initial release

Script Description

Creates a backup of current Windows Firewall policy in location %ProgramData%\Nexthink\RA_Firewall, enables Windows Firewall and configures to block any connection attempt except for required by Nexthink Collector. Once enforced, campaign is called to inform user about enforced restriction. Script is developed for Windows 7 and 10.

Execution context and suggested scheduling

Run the script manually as local system.

Parameters

ID Label Description
1 CampaignId UID of the campaign to be presented after completion of the script

Outputs

None.

Further Information

Network isolation will not work if organisation uses Group Policy to control Windows Firewall, or uses third party solution to control endpoint connection.