Network Relay Configuration

Ivanti Neurons for MDM enables Network Relay configuration for the payload you use for configuring relay settings for a device or an application without the need for VPN or tunnels to access private resources.

Applicable to

  • iOS 17.0 through the most recently released version as supported by Ivanti Neurons for MDM.

  • macOS 14 through the most recently released version as supported by by Ivanti Neurons for MDM.

  • visionOS 1.1 through the most recently released version as supported by by Ivanti Neurons for MDM.

Procedure

  1. Go to Configurations > +Add.
  2. Search and select the Network Relay configuration.

  3. Configure the Network Relay settings as per the following table:

    Setting

    Description

    Name

    Enter a name that identifies this configuration.

    Description

    Enter a description that clarifies the purpose of this configuration.

    HTTP/3 Relay URL

    Specify a URL value to use as the HTTP field value for this configuration.

    Include either HTTP/2 Relay URL or HTTP/3 Relay URL, or it can include both.

    HTTP/2 Relay URL

    Specify a URL value to use as the HTTP field value for this configuration.

    Include either HTTP/2 Relay URL or HTTP/3 Relay URL, or it can include both.

    Additional HTTP Header Fields

    Specify the HTTP header field value for the corresponding header field name.

    Certificate

    Select one of the identity certificates that you have created from the drop-down list.

    Raw Public Key

    Specify the raw public keys to authenticate the server during a network connection.

    + Add

    Select + Add to add multiple network relay configuration.

    Match Domains

    Specify the list of domains to determine which connection to route through the servers in Relays.

    Exclude Domains

    Specify the list of domains to determine which connection to avoid through the servers in Relays.

    Match FQDNs(supported on iOS 18.4+ and macOS 15.4+ devices)

    Specify the list of Fully Qualified Domain Names (FQDNs), also known as hostnames, which should be routed through the servers contained in Relays. Any connection that matches this exact FQDN or hostname will use the relays. If no FQDNs and no 'MatchDomains' are listed, traffic to all domains, except those matching an excluded domain or excluded FQDN, will be routed to the relay servers.

    Exclude FQDNs (supported on iOS 18.4+ and macOS 15.4+ devices)

    Specify the list of Fully Qualified Domain Names (FQDNs), also known as hostnames, which should NOT be routed through the servers contained in Relays. Any connection that matches the FQDN exactly will not use the relay server. When 'MatchDomains' are also specified, any FQDN listed here in 'ExcludedFQDNs' should be a sub-domain of at least one MatchDomain. Otherwise, it will not have any effect.
  4. Click Next to configure the distribution settings.
  5. Select one of the distribution options to set up the Network Relay configuration. For more information about configuring distribution options, see Working with Configurations.
  6. Click Done.