How do I block the Internet on a subset of devices, except allowed URLs


Hi all,

I have a use case where I need to restrict specific devices from accessing the entire Internet, except for Azure and Intune services and specific SharePoint sites.

We have been able to accomplish almost everything we wanted to, the only thing we are struggling with is the blocking of all Internet URLs. We have managed to use Defender Security Centre and restricted access to SharePoint, we also use CA policies to restrict access to M365 applications.

We have tried to use Defender to restrict URLs, but this seems to be a little impossible, unless there is a way to specify wild card characters.

We have read that using the Windows Firewall is a possibility, but could it be done in an easier fashion?


Thanks for your help and guidance.

Answer ( 1 )

  1. Hi,

    If you are looking for one specific device then ask your network team to do the changes on the network side. By adding the device MAC address you restrict the URLs I believe. I can be wrong but check with the team once.

Leave an answer

Sorry, you do not have permission to answer to this question .