Falcon Firewall Management
Host firewall management
Falcon Firewall Management provides centralized management of the native Windows and macOS firewall directly from the Falcon console, eliminating the need for GPO and MDM profiles. The system enables the creation and deployment of consistent network policies across the entire endpoint fleet with granular control at the application, port, and IP address level. Dynamic groups allow automatic assignment of rules based on location, user role, or device security posture.
Enterprise-grade protection compliant with regulatory requirements and security standards
Fast deployment with minimal resource overhead
Dedicated support from a certified partner
Easy integration with your existing infrastructure
Key features
- Centralized management of Windows Defender Firewall and macOS Application Firewall
- Detailed rules at the application, port, protocol, and IP/CIDR level
- Dynamic groups with automatic policy assignment by location and role
- Real-time network traffic monitoring with alerts on blocked connections
- Integration with Falcon EDR for correlating firewall events with process activity
Business benefits
- Reduction of firewall policy deployment time from days to minutes through centralization
- Consistent network protection across all platforms from a single console
- Elimination of GPO and management profile complexity for firewall policies
- Full visibility into endpoint network traffic for threat hunting
- Rapid isolation of infected devices through dynamic blocking rules
Why CrowdStrike?
A global leader in endpoint protection and threat intelligence. The Falcon platform uses artificial intelligence and machine learning to detect and stop threats in real time. CrowdStrike offers EDR/XDR, threat hunting, incident response, and one of the best threat intelligence teams in the world.
Need Falcon Firewall Management in your organization?
As a certified CrowdStrike partner, we'll help you deploy and configure the solution.