This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 72%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
Hi,
I am exploring the configuration and limitations of Windows Server Firewall using Intune.
While configuring policies for firewall rules, I was wondering how would you implement outbound HTTP and HTTPS connections rules regarding public internet destinations?
For instance, how would you configure a rule for outbound HTTPS connections to Microsoft Updates Server with those targets:
From what I understand, the only way to do it seems to be to import a massive csv file in the destination field, which does not seems optimal.
Thank you
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 61%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EXM%3C/text%3E%3C/svg%3E)
@MarcAF Thanks for posting in our Q&A.
For this issue, based on my check in outbound rules on windows server, there is no place to add FQDNs.
Based on my research, the IP address for the Windows Update web site constantly changes and it is not a fixed address. Also, there is no official publication of the IP addresses. We still can't add IP address. So, there is no method to make it via Intune.
Given this situation, did you consider deploying WSUS server to make it? We can point windows update to WSUS server, then we can connect to WSUS server to get windows update instead of connecting to Microsoft Updates Server.
Hope it will give you some ideas.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.