Description | This article describes how to allow only Edge and Windows updates for a Windows machine |
Scope | FortiGate. |
Solution |
For Edge updates, create a firewall policy with the below destination:
msedge.api.cdp.microsoft.com *.dl.delivery.mp.microsoft.com edge.microsoft.com
For Windows updates, create an Application Control profile allowing Windows updates only and then use it in a firewall policy with deep inspection enabled.
With the below sequence of policies, the Windows machine will have access to only Edge and Windows updates:
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.