Help CenterUse Local Network Configuration to define local subnets and control which networks can communicate directly with each other without routing through Secure Network.
This is useful when two internal networks should talk locally (e.g., site-to-site networks, VLANs) while other traffic still goes through Secure Network.
In the ThreatLocker portal, navigate to Network > Network Control Policies. Select the gray hamburger icon at the top of the screen.
Creating a Local Network Configuration
Select 'Local Network Configuration'.
The Local Network Configuration window will open.
In the 'Add New Subnet' section, you will define local subnets that can participate in direct communication relationships.
1. Subnet Name: Enter a descriptive name for the subnet you will be defining.
2. CIDR: Enter the subnet in CIDR notation. (e.g., 192.168.10.0/24 or 10.0.0.0/16)
Click the 'Add Subnet' button to add this subnet to your list. Repeat this process to add as many local subnets as you wish to use when defining relationships. Entered subnets will be available in the dropdown list under 'Source Subnet' and 'Destination Subnet'.
In the 'Define New Relationship' section, you will specify which subnets can communicate directly with one another, bypassing the Secure Network tunnel.
3. Source Subnet: Select the desired subnet that traffic can originate from.
4. Destination Subnet: Select the desired subnet that traffic from the source can reach directly.
5. Bidirectional: Selecting this checkbox will allow communication between the source and destination subnets in BOTH directions. Leaving this unchecked will allow the communication to flow only FROM the source TO the destination.
Click the 'Add Relationship' button to add the defined relationship to the 'Existing Relationships' section.
These relationships define which local subnets can bypass Secure Network tunneling for direct communication. All other traffic continues to be evaluated by Secure Network policies.
Managing Existing Relationships
In the 'Existing Relationships' section, all defined relationships will be listed.
1. To refresh this list, select the blue reload icon located in the top left corner of the 'Existing Relationships' section.
2. To remove a defined relationship, select the red garbage can icon located to the left of the relationship you want to remove. Removing a relationship stops that specific pair of subnets from communicating directly. Traffic between these subnets will once again be evaluated and routed according to Secure Network policies.