: Overrides the standard "block all" policy during a host isolation event.
: Go to the Endpoint Agent configuration section. RedCloak-1.0-pc.zip
: Typically handled through the Taegis XDR management console, where you define the specific IP addresses, ports, or protocols that should remain open. How to Implement : Overrides the standard "block all" policy during
One primary feature you can create or configure within this environment is a . This allows the agent to maintain network connectivity for specific trusted applications or services even when a host is "isolated" during a security incident. Feature: Custom Isolation Exclusion RedCloak-1.0-pc.zip
This feature ensures that critical business processes or administrative tools remain functional while the rest of the machine's network traffic is blocked to prevent the spread of a threat.