W2K12 Server running Hyper-v with 14.2 build 770 (14.2.270.0000) installed locally and not managed.
I have been trying to nail down my network traffic and have about 56 or so rules now with six currently disabled. I created a "* Block ALL" rule (all my add rules have an "*" prefix so I can identify them).
When I reboot, SEP's logs show everything is blocked by "Block_all" (not my rule). However, I can connect to a local VM via RDP. This does not show up in the SEP logs one way or the other.
After booting, if I open "Configure Firewall Rules" in SEP, then uncheck and recheck any rule then click OK, traffic is allowed again.
Under "Change Settings", I have enabled "Block all traffic until the firewall starts..." and enabled "Allow initial DHCP and NETBIOS traffic". Disabling these doesn't make a difference.
Somehow, it looks like there is an internal, default "Block_all" rule in SEP and all other rules are suspended on boot up until manually reset. This is annoying.
Any help would be appreciated.
Thanks,
Bob.