MSFT_NetNetworkLayerSecurityFilter class

Article
05/08/2024

Filters traffic based on certain high-level security constraints, like whether or not the traffic is encrypted. Connection Security rules will have to be created in order for traffic to pass the rule.

The following syntax is simplified from Managed Object Format (MOF) code and includes all of the inherited properties.

Syntax

class MSFT_NetNetworkLayerSecurityFilter : CIM_FilterEntryBase
{
  uint16   Authentication;
  uint16   Encryption;
  boolean  OverrideBlockRules;
  string   LocalUsers;
  string   RemoteUsers;
  string   RemoteMachines;
  string   Name;
  string   SystemCreationClassName;
  string   SystemName;
  string   CreationClassName;
  boolean  IsNegated;
  datetime InstallDate;
  uint16   OperationalStatus[];
  string   StatusDescriptions[];
  string   Status;
  uint16   HealthState;
  uint16   CommunicationStatus;
  uint16   DetailedStatus;
  uint16   OperatingStatus;
  uint16   PrimaryStatus;
  string   InstanceID;
  string   Caption;
  string   Description;
  string   ElementName;
};

Members

The MSFT_NetNetworkLayerSecurityFilter class has these types of members:

Properties

Properties

The MSFT_NetNetworkLayerSecurityFilter class has these properties.

Authentication

Data type: uint16
Access type: Read-only

Whether to require Authentication. NoEncapsulation means that authentication is still required, but only once at the beginning of the traffic flow, instead of on every packet.

NotRequired (0)
Required (1)
NoEncapsulation (2 )

Caption

Data type: string
Access type: Read-only

Used in CimInstance.ToString(). A short string for describing this instance when debugging.

CommunicationStatus

Data type: uint16
Access type: Read-only

This field is ignored.

CreationClassName

Data type: string
Access type: Read-only

Reserved for internal use by the WMI provider only.

Description

Data type: string
Access type: Read-only

This field is ignored.

DetailedStatus

Data type: uint16
Access type: Read-only

This field is ignored.

ElementName

Data type: string
Access type: Read-only

This field is ignored.

Encryption

Data type: uint16
Access type: Read-only

Whether to require Encryption. Dynamic encryption means that the first packet may be protected but not encrypted.

NotRequired (0)
Required (1)
Dynamic (2 )

HealthState

Data type: uint16
Access type: Read-only

This field is ignored.

InstallDate

Data type: datetime
Access type: Read-only

This field is ignored.

InstanceID

Data type: string
Access type: Read-only

A string that uniquely identifies this instance within the PolicyStore.

IsNegated

Data type: boolean
Access type: Read-only

This field is ignored.

LocalUsers

Data type: string
Access type: Read-only

SDDL string describing Local Users that are allowed by this rule. If this is empty, all users are allowed. If LocalUsers/RemoteUsers/RemoteMachines are specified, then they apply conjunctively, and this is an 'Allow-Bypass' rule and ProtectionLevel must be set above None (so that authentication is required).

Name

Data type: string
Access type: Read-only

Reserved for internal use by the WMI provider only.

OperatingStatus

Data type: uint16
Access type: Read-only

This field is ignored.

OperationalStatus

Data type: uint16 array
Access type: Read-only

This field is ignored.

OverrideBlockRules

Data type: boolean
Access type: Read-only

Whether to allow this rule to take precedence over Block rules. This setting may only be applied on Allow rules that require Authentication with specific RemoteUsers and/or RemoteMachines.

PrimaryStatus

Data type: uint16
Access type: Read-only

This field is ignored.

RemoteMachines

Data type: string
Access type: Read-only

SDDL string describing Remote Machines that are allowed by this rule. If this is empty, all users are allowed. If LocalUsers/RemoteUsers/RemoteMachines are specified, then they apply conjunctively, and this is an 'Allow-Bypass' rule and ProtectionLevel must be set above None (so that authentication is required).

RemoteUsers

Data type: string
Access type: Read-only

SDDL string describing Remote Users that are allowed by this rule. If this is empty, all users are allowed. If LocalUsers/RemoteUsers/RemoteMachines are specified, then they apply conjunctively, and this is an 'Allow-Bypass' rule and ProtectionLevel must be set above None (so that authentication is required).

Status

Data type: string
Access type: Read-only

This field is ignored.

StatusDescriptions

Data type: string array
Access type: Read-only

This field is ignored.

SystemCreationClassName

Data type: string
Access type: Read-only

Reserved for internal use by the WMI provider only.

SystemName

Data type: string
Access type: Read-only

Reserved for internal use by the WMI provider only.

Requirements


Minimum supported client	Windows 8
Minimum supported server	Windows Server 2012
Namespace	Root\StandardCimv2
MOF	WFasCim.mof
DLL	WFasCim.dll

Share via

MSFT_NetNetworkLayerSecurityFilter class

Syntax

Members

Properties

Requirements

Feedback

Additional resources