Back to top
Home / Samsung Knox / Samsung Knox white papers / Samsung Knox Mobile Security / Network Security /

Knox Firewall

Last updated March 7th, 2025

This feature is exclusively available to enterprise customers and specific use cases. It can be used for managed use cases.

Most mobile device platforms use built-in firewalls, but they often lack granular control over firewall settings and activity. With the Knox Platform, you can configure firewalls tailored to meet your enterprise security requirements.

The built-in firewalls may not provide the security and data protection your organization needs. In some cases, they may not even allow you to view the policies being enforced. By leveraging the Samsung Knox Platform, you can exactly know which policies are deployed, and take additional security measures to safeguard your enterprise systems.

With the Samsung Knox Platform, you can:

  • Restrict and redirect Internet access to specific IP addresses and domains.
  • Set firewall policies on a per-app or device-wide basis.
  • Generate logs reporting the blocked domains accessed by users.

Granular control over Internet access

You can limit network connections to only trusted addresses by setting the appropriate Internet access restrictions. The Knox Platform offers multiple restriction methods, which can be used individually or in combination:

  • IP address filters: Allow, deny, and redirect access to specific IP addresses. Configure these filters to apply to transmitted data, received data, or both. Allow or deny both IPv4 and IPv6 formatted addresses.
  • Domain name filters: Allow or deny access to an entire domain or sub-domain.
  • Per-app and device-wide modes: Give specific apps—for example, ones that handle confidential data—stronger firewalls, and all other apps on a device a more lenient firewall configuration.

Log unsafe domain access

The Knox Platform provides insights into denied attempts to access blocked domains, helping you stay informed about potential security breaches or insecure browsing practices within your organization.

The Knox Platform logs detailed reports containing the following information:

  • App name: The package name of the app attempting to access a blocked domain.
  • Blocked domains: The URLs of the domains blocked by your firewall.
  • Timestamp: The time of the incident, to assist in troubleshooting.

On this page

Is this page helpful?