From e5c96e96e89cbd036b1f08a72a7cc255e7345166 Mon Sep 17 00:00:00 2001
From: jdeckerMS <jdecker@microsoft.com>
Date: Fri, 16 Sep 2016 14:20:25 -0700
Subject: [PATCH] stage

---
 .../keep-secure/images/vpn-name-intune.png    | Bin 0 -> 14682 bytes
 .../keep-secure/vpn-auto-trigger-profile.md   |  45 +++++++++++++
 windows/keep-secure/vpn-name-resolution.md    |  63 ++++++++++++++++++
 windows/keep-secure/vpn-security-features.md  |  27 ++++++++
 4 files changed, 135 insertions(+)
 create mode 100644 windows/keep-secure/images/vpn-name-intune.png

diff --git a/windows/keep-secure/images/vpn-name-intune.png b/windows/keep-secure/images/vpn-name-intune.png
new file mode 100644
index 0000000000000000000000000000000000000000..a7b3bfe3b490a7f86dd9ca9bc203a257ae84ffe8
GIT binary patch
literal 14682
zcmch;WprH4vNkpXTVRW2i<z03Ws${Ti@_E%Gh56I7F&!X28(SmGc#+%%=B%&=j7%l
z>z*VlD=R-V+PkNBckSx#s;8c+300JrL_)+x1c5+EpQXf<K_KV`5D3Z|9vW!Dq%70~
z{y{k?ONxTZNAUN68(0$&IS~-3D*D~y_cy>jf~}N>0|<oN`T7UdYg1$h0&$;w78Cj6
zs(ZBj&hyK5#_1W`Qiu2#VL8}02$bRdn!i?Db!3)~<s-a=QnQOyo312Q^9S-cWEb)m
z&8MZCCsKbbysxtqsRB2YbBu!{Qp^$RKh%DtrZo2@?qev@hV7t8cFS@YVKb389wEmW
zF*Ihq^U8=$-(A{GaTvMqVPvx_)2NYv0;QMd<dE{bF~sMPUPFiTomA1&8zsZUv5a}d
z0)c+f<-meK-y*4@Kp=H8Y2Zy}LeN1VUylE$%@cIere#+jlRd7?Y}~3oQ8UiQ7v@%}
zTCP%Kkmwsnc+G@;3W`FO*<d@Hk=QZqK~2sA9~?Pq5Y3+NM+Q6d%npc!+`_Wmz(nL%
z&FRWR!=xNhi+Cjk&eMw`N((qm6FQYt)lU?%!}|YiGPnA?ftiqbEoiicj_zIIPKk};
zesLj?eFx(xgBdIU3pMTZcLJJ+K*o?ByD3u~o1wx$ME7VPO>SIvlq!aN$3u~(=-tfK
zWdW3W4GsnSN316EsSfQ)#mN?{aBY2s%_OTZHX$S%OP8;aXT~~#$SOL+dm}bsh|u@6
zKE7?6^mY$0-YKYme+aEPCPTP#Cw21m2EX3PNpz+yX0+3nj6(|>S7K4HTO&}9@aHl!
zQG>4&!hGrqJaShEtPj|XaRN&hW^hTR=M<wq83dLpBiwckRadh*9FaGneZ`j<VVNcz
zO3XIO&K=;<uT#ty+JL0)Kql)|6=|it^zuj5t)4wy@@-ONA^Ka<DMq>}bXM71IWrSs
z;hiVlb3J|Or>faprV9#}i{lnQa3}ARh|<SHHs1B|7>`S`7+KyD;CL|7&>%E4|1{6)
zQ4;NrZYpZgUTm!Qz8xy#4I)j#^}rC#YFVhX8R9$#mr@$A8N4xwhrE648>C?;@G4O{
zkzZ6*p)SA1rWJh{XM(9h+3c99u9XpV9i;2pCG%6WLv2)c5MEvK)L&nM5A6$^KsWib
z%eC|7u?^iMR5l=l=SP9D*8-1^cl@42C3@T3CI5S(R*PetyMip`Xe>iVW5oSsrFC?w
z^6h}RcJ8Jst6SNv=9x^q9+8N{=@Dj6v2TB>u_!PTR2x5Bsj@HYH2GGT73=QW(tXG-
ztXC$b+X!3DFJDoo%Zzsa+MHcrzWC7q<&BI*iCCTZkk9ko?()}TUp*gQu6wV6$MQE;
zD+$_JdJN5Ck&<4&%pR-|xn&HS&537=GehQlzMxs#IbN9EXbaHxInY8)Y9xmtswR7e
zWC$6L!!cZav0$5GD|P&et(Elq(@FQ&qE?2gP?b^qGew8H4^FDg>MA)!qZ>V%YDV!Z
zG2@CV=z<ExzvQ*ZLnb)~+9C013i|^Eo>sbJM^m$`p@LzlRo(_s&wKBBGM~KLwa)hL
z#?=qhmcDM(pi7?7Q7oK)3*A65Q7c!;_^QUBYC4eoVLnc~ag4Z}(ZH-NCrLNc{O(!I
zxsldTiCkWEv>}zY!A2vQR27l>{&U!eOE7);Vy0MD$#k>IVoFKvfkJwAy-uy~^^a0I
zNb+A#mqevOtiT43wiyAejbdF|K_aW<>L1Iq<V*;$>pB&}9H_})Z6uBYEd>?D5*^ir
zp&m`WTWds&!u268!60atuP(y~+ueb8)oA4+W-A3cB<GL~O{C;Y)vT!PH}i7FVGY3H
zlDV3|MQb(X8PE4%@uW1@`h^DD<t+_@$y~NW$TqR_*DLM74vZWZGn?W`O@nTePFB?~
z`Ko;O&3vhPxHu72RHV2UBe(s_l;tI@2iPSAeF2;;48CO#&4=<)k&C>3Z?&YaDJQsw
zcwPW8^WPqioXm_%t9ZgAQuyK^TK33N!)sd9qe5LG_FW~y8KF>1$f4?Uyz3$DK$6w)
z#*Y%4t&+=PwmM=7{IC4t-FOirI%l=hvlZ+dXkuAI^*aT$H=bS#qEkv!E2OQsh0}4J
z9P*PUyY#WKS+^~h?j_t|zXfX}r!H8UjJtLV6+&zkbwo<t-T8H-B}FW)FjJ<dHUECo
zP(j&Fn@dZILf_v-PfpCyQ5&BH*SGME7n+|P<2JyiAFI!LhFFFuGubl`e!vK;P&TZC
zNAwEwWLmZjKVomZLp#&?@sot{b6rSX6L*BI80;#kEZ0Z86VZf8d-&LbsYy8pKis-t
zzX!j4^XR*og9+>JS9|KZG0R2;U&D1m_GE`*W2RL^x5CgYp#T#*9v-L3@*(!OE;w5J
z?L%s2W;CT{r1sM2cp{aYNT}AlvesgPo^pxcrzc$>Vj(V8N(crT0ixeZ`kGq!QMr4f
z&|8N{$&vjxxufc1nQPT`#ERL13eBn%)A~K8Fh$j-q!5A9T+<`rxM}rq#jQe4WSpz1
z)1T4bnD0d@1nT_%=F49(3vj);DJWRcI@4`PDqMJKKHyNYP=ldY3UI+{y7D7zqh09z
zNYG-w9-`?Qo;CtM1-psM77UNu%0t4Rnyo-V%?5Qjq?$l1jq5O4R5X%`OOkKYCfzDZ
zX3i!dpk-M!^ZmRag!hMTSqKkW_s<kfNtX|t+k^L#uuA>5joO-tUm~$->6-ax_4l5}
z!J#E3n#c^1++<f@=!~}Oxb84yjuZILe89RZbnZ_amz22EH!26yS<gBAsCK^HfBF?$
zHKvAZeZZlI)1`^}4dZkYMB?C>HyuZdx)onL+dkfX#Z=o0-Y?#uUKb(MFH|B5ZfH@@
zP*bEGcw!_Fz_oM2v6|Z6uJ#eJaaYpP*x1$CnY5@HpS2<f_lv-9$8{HLwlw?kD}~P7
z%xvP!xF?4;RePUV)H$QAZTF&?NLrLlSI8<j>BuE&*+lJ2w<bQW=+>!2YB5S{o8l19
zGkz%gh#9yw&UzlC1WQ~imklLk$r*r+!ZUgtDOuc=-|P2A$bewAl>Ca=wz>KXg#ON^
zTTC%WP>Lwk9{g={C2agKPp%6&FGV@^Q&t+C)ZCcnSzfBrms47fBoxh8Ni+Cl6|}&s
zb8u62`3#|y*sPh8m||wgoHD<oD&1M$Qn=Y^o{ojnk4MzAp)=V~H&<&~89Sl=BGWg4
zu9OZjQz{bs(%5z1(>tE$IGd!nUyR%u9tQcq5S3$8=KU;MqrY69>n#3eYPU8MQxeVY
z6Xa57y)6;7s_pFfywseORaaX_LY1y@gMON~p{;Fnm0WE<Qn4b^mFYg%$Zk0`B`A}f
zuKF|o{TJ{`2JdY_AzK0gmwBne@6Qqmt2y859{VC(mQ~JF70nHk=kAnC2bEjip`G+_
z$532B?5j)nn}Wu~m4DJ5D^7xU&*@rQXx=BKXcR`RjqiMDnhGDd)fUYqb6RIpI??0B
z^v&d%DbrB-@`YRlfwUyKl?ly5{L2y@bduHVAJC-wVUfCYvfDyYMTNpG8Kx9bC~opt
z!vLK&r^ojnLu(8uE|VZ(y@U9ASP(X`sf@7k0g)8~2t<7MA267uSMR#%!I_hf#a#0X
zM#@{?Ne;n>^irmWUbM~{!=|h?KIA^j`ka7iA8nr}Aw3EVh=<4ZA&!uDi|ntH*!9oX
z!9uN16|>ru7*DWD(5z`-!e9kt!Z;Psw?)Y;`~(%ygg=-%n+zMc`nFhn?acFrSYQsX
zRVoHV{KGX5WY(jafV!3WHinyD+1Ig?iv$V)iXK)7T~8qNU`fOnYs+hHkZ{MT6x2lI
z@Ob#r)W4dI(N~jB$2v|{Y)v3_w)yF$)ISPUS8R95v<#)|CLW}IX=E+AxtPW$S~&05
zyw?wQ@z6^^m>y}CYZmWd^BhdY`owow&EvT99%Y*f-5(oDipz`D{VeU~36kGCJ<C-{
zvlF-DcY$e>e6H(mx^AGh<el6WT5Xb>j>oBLrh%pN^KVSwdmG(djp?oFkFAcY92N0L
zs)j+UE}OY1Xi`vphMba2*Qob=?W{LxBUPjPb@B>PS<b_^Nlr@B6&W7a(N9Zt7*}0O
z6-z}5Kk;ujuDIGN?@?F-=MGJ7lQJHdezOZHC~S?S<7py&v^UXpTls-vDle5zNJImQ
zD^plNA4+F?x3V-vjS*%)c*REaBrfLjw~LPPEB~?!scbqA-@~6z*&U<bYM+9d$emZb
zcFCaTzm=<=Zy^?BR9p(?*r2yI41HtkyeQ8ox73}LQ$2{})tYIcKGz;<xymG3wla6c
znlG*Rb>&iYFc@9nmT`+&J2d)dpdl9TKGAr;I+llQ<@b<sEQ*WZx!!a;f=iB>gJ}#X
zCKFwVG26p!b_H8!W%SBZ#)38)+h?p>dvw?Xnn~hI_=y(1)`A?z4ov$)8tG05ZQbt3
z$;e|<)1|agsjg#aaNYTQ+Lc^_T&%~S)S1a`SC&NzSrTq5f6n8i!+C!1iMz$LgL`bf
z#RV_Rg__XQF;)gvg;wE-&#qQl;;0UvQULrx0<=I@g<|TK_qEM5>x))(cFqgN_@A_a
z?h$P#&C$r@kE0*h<a9WzWkj3ZU-E*$?XJMGdmRW33Kd#fPt>qfmY+%Qa^S>MagN7<
z^6=6GknM9kune=v3fX%wCWr148{I?E`4oRb8ohQ-%$w*rXsv9H)dZJ{vCIqv2<s4@
za?W<OZTDoK5Clm)%I>3c4y}1kJ4$+UIQ!YJ*|guaiwU3pRQ+?ZRHNs1Nz!WnIL9bn
zUxhbsQLAgIQDfJly5{x!<WCyZ-FQpo-JfFtkEyGXW^RLfrpqP8+#lTzS3DBdo|U_s
z^9`$(j`KrpU&ec!LrS^y0>A^ccy-fLJNRBhy-jjjCL`&^V5GJUP#yvB4g#x_bQaI-
zg1h`FF_hlpJTvxRGN?x*cvabz7zitn4W`2I8N^P@p4BTVN7}yhKnbwEy$@BBaBiYv
z?3}JV1h?-Q;Pnm+R9#PmcUCT?sL^V{3=goC&f>gTIUIvXoi&}%rKlnXmFI9Th@VqB
z-zn}il`CD;yDev0;^+#0`U%QQZnKh6-}BlEOsX0W3@GXgJAVd$6sWr($pu-g)X2zd
zG@l&29s-5?+M?P(+F`!c1yA8L$lrj&Dl{+}PLFp`_}n1G6qTp!iO=rQ4K4yLHp#lt
zd#5QiQR0Wo_mMd$zJ*Ib_bsUV31}jJ-f3b*^j$O)-N%R2c06e}vh_BwgSBT}yG;r$
z%!*89KofFV5xVc|<b7@!C|>dv<1Jy8$`2PRu#PZHc09`}d^$gwS6I1R)hwmd)O=|D
z=HR`pmpFV-i<E`8+FT#dm}wK*p-f2U9~42s3>>3YyBqU)nhOZ!_O9m5uvhrW0>-`w
zGs+u|Ege3u(H*eF4=TU7`FXgldzeGXH)3!14fLmO2nSYzKMEGybQk%5{-l?g&SQ1>
zE)BCy9GW=ezdV4Q`{7>lajJtqU~P})YfK(*&scx7%@*R6N1qL~9Aop{Z<6J=wLRAo
zWeeZe%q9t65Zk6YKQsRM-AxTxRCWU!ZNEn>Vf<R6ctxM*IJ<B(!07G;QA0^_K3Nn+
zNQLx}y^-SL^uYgJ3`LF{jY&K_mINZ!d9}AlxmZwnNQ5-Psa02UQmYkuEgM85$q1mz
zUGU9KQ#<aH+V@G^)c`T$nhz9TUYhD3OY>QwK-ZVOl8CR4pw$k69R*qn9~hviii;5-
z0}L6{R_%z-;bNHovGp$apnnfPp9HWSov(rb7y_UR4(lkGNpXZX{*gie88q<*5Nw&*
z9Zh&)EfzWtC(R0BX%d7U^y(k5Tj4>VvU&VgYAVnl!G9*3Px>Q(^pAJh3k2NYp5H(H
zl7W%S<}GAmUZ91c|K(2z;jGR7J@F+s@U;c-DTVbaoIwS{j~x*ZLKh$uTP?-ETRVTh
z5*x$1TF|jVzFq5pD0u%CB?Op47uZ!XjQ^<D4)C~tQd{d`Q{n!l)#W)0nYF05F~a|>
z37s^zBcw7N8npP@8}NW*<0~YEpg)}dh|l95d;RaJnE*Ee{V(tL-&SLO6OfhlqY^+Q
zRqm+Q7|SUs#maV@{mn6wInH3h0NqCuJ-ZJJ7^!8k=>L@MRn^mDDg?df=gfs&jq_M$
zh5Ge!+hWrFW;eag@^7TTTSQW6*Ztx`L+C%gv5ARaRaK4Yq>I$Iw4@V2m!C+bxtAt%
z)w#=ig+;^=v>Hz05kN4VX*MlMA=K+6s}m0)=)TXAVhC`~bx4H!5EeyLr4BP8QqZL&
zU8ZXiH5B&PCAEm`B{ntCz2hBI0s<(7k&7!C_yQ6^Edmi#9Lo);>5WJ<1Em~{{e?kO
zf^Hvs|K5?n>Tghx!VZ($8RSgG{v*irwiOlxiwG=W7`o|a5bN6?(7vYiJrqk9{`*<p
z?b?)}OQIb+1mkf7OzdP(Uf22!-lM{^@osOhA#XP00HMcIhD#=kTbOLHShP$f4#neP
z;p$6}EC?c`FODE8_DeVcc&GyFxi`=xvgLlCE|~KEn9pr(v#z3oZ>nJFa*ULRE`XW@
zO1{p8-Mdnc64Pk)M=k?gbRX=PLYceKr!s00W;jGK1Yv3Z^Q&e72Wwk=p^5owNd)JC
z#%m;8e#qlHdEOxY>t^BZQ7?OAc%_a#ZriQfw3Fk7-$p0(0$HB7<LgmTBj5dl`;16U
zxj*o`U*^ezp2SQF?axhJMhVCiT_1+I?kT0`o-_Cee|qo2G+@dlvB}N|9(j4jpWk*8
zrpVJ?gceWE&kpM_@3Irc(cBEh1>z;{p)ma<n}i5?pI_a**qLZ77Brv>!jG}Ip8oQ~
zi7s<rUu;*WGzmnd==y$etnhpjc_Z#=yEZu!#o1dJtl(HnM_@&oXD~(i7FIy<wt=p9
zds{w?P8yYBk}fUbM5t;m=MiPFj5@pVISNj#&n&Xj&U+SL(PcVkOU!Wa`o7TT^j2b0
z)~U`*<SwQ^#k+MFI+Hs41zoA5!G^(V^|x+;oS?w;itXudS<`|{0e#t-m`_xTs{&I-
z-p?9jJxC~O7D%58^seIdrmrcb0W2DOO~8F`xEz#r>~o(fspoya?Xu!?vergGCAi@5
zxK;J-p`Vxp`YrO47D~JJ#rK1LXP#27)C2L5n2Z`5uP0}oLZY<CQ;gCG)bIT+)_UiT
zE<Pj<$4?4^Rnl$8EsPI;7j44Tg|L?%!YLF6#n{ozm%Q8I6-D{nn6()H2s`bIRUR2$
zTGZwm+?+*G_7*9LQ*1b$6B$2xpH#(DDLkI67*L%T?6EZ<3p(tcjj;Ihk=9S^>5rbH
z3RK;AAf$ZNClv55*>4njd5G3i*Qm*MJ6K;{jLzU+pdn1KXJI}KIcRr#I3p6gxvs)s
zfnyO<Z+<>HG@EQ^wpySo)r+Zlo2TKxe>2+Z9q-e<V9X;)P1EST+A}@c6_O=3vn|`c
zGWDC)4ay1xqphV?HtS>nM<C>Snp6C8TEUgL{1|y>qLA8Ba;I|k!nCTwxU;2@<-D~S
z9X9IBox}OQ-Mx3Gg4Re1!M&t)^K9B?^zLs>d#S}z-P2rlw1U$mC(MucRM3G11qv@0
z$v%fhzfP|U<R*pq9A?tz=N~vz-bsD;c$#!s@=kkpFYqo*$0If0zt7=o-%PC0XP%k5
z#$dF&YHDknswVd~?iV%qbkW!?Sar18xasVqX3p?ZFX!Q(Glhk*+(3;@i8Y+!+_rgi
zRgl;_ny$tAl-NrYK0P#1ZDtV7z`S93(qgc#d6a(Df^IYa=shcV6qy)YWe+mjPbj*{
zs`iXTtk?4}-nB^<bUzH?^=vEie1@E1w6&}evMjI6T$j1@3uU134~`R7C7z*s%pi}k
zr74M0-Yy>?aV@`G+UTydSa=*%De#FB_<_jLs9PRZ{;t3x=71g^+R{s>7EZVJChc|0
zks8Xw#Zk(&t!n#EbXq4MURYv0vvE2(O!v=MyA_u<3GYaYyX&iVFm8N?+t0lnQW&Jq
z26w>d;W@#45P{44pq!-ka}f<$XCHlK>sWR2utzfrJq(Oiq9IprXZgW40oLpkj^2xu
zbg!f*<og^r4<&Cne-FLqG}00B@@%}<_obsAuvg0Ib=^ie`dO6j`fRd4=U3Ac_0$vn
zVlf37*T27s7P8w3%}qu=2~l5tRK8i_gW;8)`|VT_f<pL^)$Tp#dAON`5y1n}-!uAE
z`D}w%Qz$n(xLYd7x2(-pu5pAVepsfRqJ4S_!-E_w2=4u;hf-G_PW!va_FxiiM({~g
zW~BC1y=95CYG;+Jl_7q?R%jDd$26B>D45y&ZaMv@*QNt~&`0{8TwJQ{oqoY;p)TYD
zCxi$0deo6MY^2V}#8w0gPu~aY8J1fLYS~+x?IuSUw7LiU-xj~QkNp%p`?MadBD8{A
zW!xomsKF;X`qnz(H0@8%2?GkdjX;af$=L|<2Fx$GR(Q;Mo2A-O>Q-Ru45>!2L@a7u
z(<JK{>AZQd9n~ePhpc3JF=VAUr^uQb>o}!US9DX`)Hw7E7MIui{Fa<*7w1?uwOOrI
zYd>h_V|nO87^Goi_#HZZ!fX*GIdyfVPNF&+)M@t|nDkfCvdRIpcVH_sDB0}nbm6YW
zW3gW=L$#wr&!w0!Zj$A6SLSnn5MzgCA<@#6x&2n4>H`Jr!|v|@l_P@H2cvJ(CtOF*
zzY@>jgioA^s6)b@+rBAQz*$s0h_ib2F!PQiM;`UiA+-BdHW;m5j*cWC#9QAJINq=I
zwzr>G8<E?&E62f98jbxD>6Gkp_hNVM$aY|QoZy;nj~`o^QN38D>w4+FM0z=~INFU`
zWwTc9y5C8jt8w<t1i%j@Sft|zS?@_niPsZY=i$cjPMOAc1wyIl>M=>#y13#RYR~xF
zC3oC@CEu&rt+4SyNPjBR>4Ub#AFdlFc#GL~@Rs4t95TyY$Jq{B=-6=ReATtt$!elm
zk`O!z<O%tp`MoAYRA6^)1;vBQ@!Lt}=`WeVr2|2@m;!v{-qZD@ig>b7(}5KCNrBa|
zUQ*ahH*2r8>1l;$30V|8!N<YOH(I03x3_(4Wc94N`lAa_?wpnG`1QxnTji4GFKu_Z
z3Ml6mp?}P(kug&bxQ>t{*q76I+o^oko6L49-Y{ykDa#jM?aa?h|JHA9eKvdPX}x!Z
zeJaIRWhq%3zM^}=t7!JFmvts<kV^009PA`}$<o-E-iSMvrx(3c?6Ri68##(@pE!TA
zmcTN9LiT<!PnpU=bf9^bJsQlpwh<W0DIF}3W78zi-_aey7skb7H&vX0ADrdeJm<yt
z*L%9M@qPxspjNa$dS4|<y0kq73qks)+qJXb<1R5D>q|}r-P37UAv_Jx`7G}j>$cYI
z**?&?Z-TVMex2%0{(VpjEM2P#W6uSpar7EQ3}RFa?xesW$a~+0!X?OgdyO+a7ld$Z
z$4TkTv~2$U;BeA#%j=*22BqRYqWZJ7>w}et1LGvu!F5;D@BGVmIoC`xp&Z(OrWWnf
zSgnpX1s?D7+)b722LpOqf+Ghmb-e>cPTI$M@g3tm09&$WG4`$Z6m7g>qznzKfgsh+
zQf*|W;cE7Ur^;hV(a6}sHA+2o*16K*wlBo$3fNKnVhWZ|q8D6*w|k?6itQOG&z#oF
z53Soj1o$*DrV`-an?{L5eQwM>ZoW$G=P?=70HN<w>1Fv$cEy5;yoo16H*L8kWPjc+
zqD0@^F|prZJs{(It)0zYAM(qGfaWAaK;%Ejuq|y)usIp|a%%qUSe%~5e(E*KGPfXF
zYR(P>NGb0#g5ca<1%@K;yH1p-QwMlouK;*q`v@Gttqd3{KQf7^-`|v>^*X6!4~KBi
zZv3f62?Rt5i?!<A@dr-yG@rf&%I1|ew=!9~oA?}zyFP0pf#`q%CTcBREw19*pNr}g
z+A6Zx+`F)LR(Q(Sh>Up2|N8LoKIH~v@n77(l+WAW{-H^EYuf~m<{QCP*+bECJ`48o
zwBRFw{zgOs&CEO>fj-et`0^)qGx~WH&%>o|fZcaeJOuP!9S~vZhUrY;w=m^IMDNY{
z!GTL%1|-1@R45(*kEP4r!RE2h<uIM)3KKJr&cjGzl^XzV7HZrbPj;~pqMQWDhr^@w
z=>5E!48vp0WR@R+j@e`N(e9{Dy?VGgH^BwAREX_(!gzz1H9sK8H{k5wKBKRqOq4UM
zE2OzR+J1dn$?y^+{ocnMyrJkL>~M<80|#MRP@q}9>D?pgP}tFH@HpTrd<p@L5mA))
zu0QCmqPSnNZT4R#24{M_wE7cRd9ha8OC@baumwl)8}x<N*S{O(v6vhCi!mZ#aenuH
zPgJO8KM@Jex%-i@9*tC+|GT!Amw*y9^DjgDgfSN+giZ-$UMi2<00#*@7o!!9WZeX|
z>-UWyNU-3E1{$3-b1*#V=LFDub_BfSn4nev$Gw+Fqn8!fVE9kLe3Y_;cYzj6x{asd
zFHcAFdbIbFqOgV~A*fJ)K*>tESPjR|c~@c{lA=B%_DgOWYTnL|qjWZ&Yf+;Z_{246
zq@a)(B_+{iEiDuxej1GWP^z7P&$(?|^rv5!n9ukn2#Gsi`xrAxOVzY@J)Ym+Xhl2r
z1qdJq+pljat=>0S95c2`k3h3xkwAlFQYMqeejE5yc8<@-{`^B>($QD(QQ={CFWv~Z
zPdfk}q~D)T{at4>IEzqT)}>R!AlU19pr7mIBA*q>kWmyCv|RatBJZnDC*H{+|4ORw
zagc~Vfk`x;^JsE;k{PiB1;1F)RT5vohJDK0u~8!_t&Z`{LT8^xv)*FZE{1sw3D1Y5
zQ6xN8^@1Por?J5BZYuWOFBy0HFHnXc0M|6tQXVe(^r7J!`Y>;=Wk<1?AhqvId<Nz&
z4+w&f?AA#`y_5*Fw*kw-K(Y?S5zHpHE1hnrsG_KTHGe;B?6hgN1|p>ti=`AYjQOy!
zB6_5^{xTVX<<hZ;x3n-}Dnmur3HyW16QYQccDXbfc+wy#I-H5k%A5GyUQLDm03`n)
z=ZP5KA8QRLL!Y;7yZ!v2dGfh4<j-CTcC6f4KQ{3B;4mNwFAT;|uRmoF&A;?_lW0VR
z?q+!PgnVa3B1Vqv4rDxw_Amo-6MSo>m(GiVYw1Gm#S>UnK@Hj#Mq_<oJPU%Tjg7Ix
z1&LMyQRY<A4y_N#9^3RzbPH6zu&>G;b-|CS&3wN=m}uLR@~NVkRe=)Jm0RU3)3&(h
zsFwJVIzQ9ALFEkY(LSXPNI@Dp_!TzEFZGFjl1l_KiQA~QrB65_Xr8|j>1z9bE#jP7
zC<%ibmMRiVFZ?LN+8@SXg<Dt+FE_Gtsr)jW6^vbH)~ZaRfMEBGnwkMzUS3+7<U_8C
zdDG)apPyN@0}DnH9_!@_;Jy%j!jX3g6--Gxv0SMam$kI826TD_ruBmID&WRLV-InC
z<0}U!b8KcD=g_gQYY&&-5Y=ZCL5j4M=dY=~;sbq&Ij$Jgs-g<T?v-D2iG+o;VmCGu
z!Wz4gR6-1@h@|bI=>od%)_5ugEevaZYEB)V<@`(;l?OWo*QyD-6#L8oAzTjy2tgm%
z>1jU@vg$J{U$F4yYwO07K;&vang<xD>de%#7hKjZxcc1$Xs*756PV%^6MS%wfg)DI
zx0orTp{0#0=3c&P&EmiAv>6nW_FAdg_`}$&XOHdicWkyr4`2*Z@9*y?y~RL~XjT5R
z!&mm;Uqr(NAF|oxPk_xpkNk%+!TpERkVtr?YK-~-f(W4gS=`ZpI+EPp|FN26ST_OH
z@RAe+!WmRe5RL%)zpc5N&3t|mB6>b~xsQ^~!}K{qfRG`)SSXydthU^>?$lp9r@W1!
z?+ilD(EZ8fG$57|_4jc$GX%W@pfXGmqR~|aUIxH58UAlss1c>=M@B{pbv>_284G25
zV=CJbfHmcvpOFXw<pun{(o{%K2wkait6*h?687Zfb+ZQ1V4NUHiJ=e|^YZd-WBTTW
z-@L8;KyfNA1v)c7A(jRyQ?B5}0Ibw!aV_W=(a%;gAYWHN*LjL@i|7!05NcNaH8PMR
z+1qG^G6VReFTuzJNh+W?M&K!GC}HKghO^Re;ejp>n1wL(+b9@c*EepqpkiRsK7gG1
z{9&sRDo?(Jix^<d;==1;i38&n0dnnZZ|er#cPjMeEx9x>Ccv^OQ}=J8gNOzHxh&p9
z$4B;i4?4?cfRf72tEbR*6p2cQ_FX|>WrUK-aJ3QcP35o%3kx%(l_w(NuicnWUa?sr
znJm5#dAI|ZpMGFp0&5)}beIUN_2SFPuKWYq_q~JFr!yw+OCnY%;zoA|m~z*Rd9GDg
z20FUZvN9mg8Y2kU`B>o4bDYc?Li-l9wFy>5hq$fkv^+|_GlCYjzuI}rE{X7-{@)UZ
zoB-^cg+Cn9{#vvoOfj)_>$*m#VU7#L4j$MYAxWo%!O1VT$;rA;7yT-QhPcAj5%?^g
z*G}Ru_E+1i1TdTEWoQ(jadbj}&U3)wX8hh&Ns<%MaEHzp+YAE&U3=i;a|tjMj&b?5
zXOI=jexz3?25yq*HAo9(-x}99Ycm2T2`Uhf0_2+sj0Et7Vy`^kf8VtKYEB`du=IIM
zy3$J{#^CJ@=p0=>$6r0#XDfGmhsBUyC_ilLhIQuR6=%~!dXj@<j|-C5lMq7?p9Cg$
zaNXNAME8=%6kVa9ywGL|%R}PG^uQ{`Al3f0RGlxAxft4N{Cfwj2?~-g8-kvh=JX8b
zvzi|vwCjP)1NT|+Wed9VJQc~F@jfng*TSWw{Q;AX6UJApKY)5YY^i2d^WomZBLQzW
z$m8P-QwG7~5&l^dB*ONv^65-#DrIz-cTz++)-@-tWY#g9v7g0wZ+a%ss0KeusbRhp
zwo|dj)9$JHfstvZ$qCbFr9<3(WH5@b28Yor_LukvwgF=~r-%Wx&t68GD!El~!nMyt
z6qs^pdH79@x^8wCy(&z@)4KvLdi@_v2wavfYhAr;zdSQop>ahBv}k3xT`VZvy}POZ
z5Xvefc4YT+y$K9KZ>^?7WNuXM+t{6b>)+cYIu8Z4=zJ)|ZGVZ)vYy&tn^Ub~p|4)4
zk}_9!W73nOWzzpKgzCT~F%;FR^TJ~F9pNIC@lvyE<L#7n28WW~b7>vlV2*#pb8*$o
zfi1T=o)LOg5zbfba)nrf%BhpwfU6n@7xt467(&|fWf57wqCcmzTX$*sER@Noq`Roj
z&@r_zVpKBZ^nUNjyNEjSNX`u2;<FioDDfmi))y#va(mLbJ~N^k%i?a^_PHL{lNxP7
zLS~@PiubJe7tUoaD>vEAx+DIk4L}!Gb$r#BM5Skl*@G&mx@8}D@SFJdDY8^F92*qx
zO-R8_DNB&$G;V?z;T=F{EEgZ{8^O8P!UC2=-k*F}0Vkg=_`L~Fo`tYExno3)Y&LT7
zhD|PhaOBi<#|?j{lk+VJ*F3esDpn@0e5P5}P7P@a^>2{hM9E`8LXeA;<P)Ft?aGq2
zQS?mcul5o=s_jgsos-+G--lkdve<mmPik{Mw|NmH#u)|?GOovMaU;DlO<58)mUC4;
zhSy@PCA8)Z3+*h8I}Ge^sk>4oxWpueQ+e<2x(B;2pZz7P3w0Us5R88}U2<E_jh95w
zXYNj@T<nNDQ->%Fv(Wa=k-G=3m@lC#rn^b})mGFzqM4>@-Oe#CrDeP^XPZj3c5`bK
zl%Z!2%h#+bF(b%m`(lGVd-H|S*o*+N2_nj{c9Y00$5l}r`)M_eJ0|lzfxN)yzdy~&
zh$-u~_wTUjLNWqY;_WU^5yFqIG>m(YyEn!@uGdVs<g|Jj^xAVw21!Ub^$R<wLQD=A
zD&Rxt@)U<+_(JdDJ0zJLzYg%=#@aml>SfJb<MV30{|2b)_t}KQ%Hk3|hUilP!NC0J
z2O2J+Eg{>PfHj+4M?sH#ds)U7^S@~ZOs!%WZjy|f=!fC>$(7m0M;?-wZWy`#0Z1Gt
zb=3MaBEAF?nWL#i*hnxOgIEV{rA=Vd7i0&Izd;^8b)36#q+aV{V4?4yhR;7zXpv8k
zhvS)NmigSojd}M{Kh%LYs7kV}#TkA!U2}wpj#MN-j^0s(3AIqq7LSyaW}cL@hEXUr
zHSc<KiMiQ*54B7-J#D7l;)Kd_DCR9)h%a=ZHXXF6w+f~1!%c%8iL;gQTj*2DuK?HC
zhIEX6ozJsjkf*_fqn2*-&O`#rg~a&xzsMzyG9hXgcYz6Yhsqp3?3*ZWJHLIr-+AM-
z|30xOD)^?@qKqSIPEjQ%qoR1PduoK}l*5egqlYSOEqd#e3V2vit(3i56yE5YNU@|A
zJv;l?Cb733CCR+qU$c)}<hT5$B~eE(&YZW9Io`ObK+6?S(Gu@30HC7kqIXjqNmoAG
zCZtkAK80SrQuy_nR7F1J{g9<gqxKm;shC`YA}08_B-LD@xTst8zT*v;lTD#)4H*R&
z^+1jO!*)v1vMQ`tmC4~>;;@<)h80o0n))vk`#t&<Iq4VbmvjNn)G9sJ6iVh{#KJcF
zsA&FeT6USkjn-BL?v8Hm`ir7^{!OK)vIZDlYHd49P39ccXp`mAS?<1L9<zlU=LDf#
zq@!xfHI{4R+}%p`Kd+5>!+5x+riZ9<CmlW&666dbek2kJ)!z!eJ1WYleg`udMwRJx
z5jk63T|F=`aR2g}07I)&wJHw`*Z*A6hp00suLG1yY3zW(S8z)dImq;8A9VVuk&&h~
zhjkFXaCc-t7aLk<71;-`iicR5jg8EjTA+!ykzh`W(J(O%&9YTy587h*!$YT@m)2&m
zixH{MPD+9tgQ=l>b#i{bzj32`txp^Abow@yu;i(iuTUQ!o+z7v_IA{>Vf5tUE9Y?X
z8+DO3l{1ETkJ2l5vIeuV>FDj^^3q~^E)JVXli-kH81GHtH*O=o3WN<+ssWflq!Fod
z4)?e-*7eb(O?QHeE0FG(_pI$oQ395WG)S@6DXc~rnv`=w?bN+fqfl$7lwF?QMLP4=
zXEQ0J0VgSoPy9)e09XI-2HDuT*eLqhXR~+Yc9>88Dup=7AS3_{HUlNQcXEm5avBD;
z>B;UTk!OfeqO%D=Rw3R`xdB~qiK3@^pV!IOw=H&X6~9qVq}YyL$zQL8pl?WHgR_S>
zr0!sf(CY{jQD@&bP+39lYn!*UcRo3ZlSP$6!^WiZo~bfvXO!PWT!D0QTWvLs9$${T
zYTKBsPf;Fnz>1TKccQoc#qvHgJWFARNlPx{6t>K&LLigl8njE|B6h3k6&fZzxOk$b
zYu6?Y&rGb%3Fj7pnUUm)g^`2;JNa9PgSIGd$YJ9N)=)0KvcCud{C90=-}jUU1FBDW
zAtHE+8Z`;1P_aO5jv?;T!;hy@hU_VojDes4zX|VT11aQY0LQUv0bz4A{5Rq3R}6d^
z@gM4{0bBx+?`YpV9eEf|TeYyZut_!p^|M++#`Xf;R0?Gi_OOS5^s6*zEF(Y?p)}KH
zduDz_#NV_JHV#}<b5V??_f%3EETq=~)ZpX|_1ANX!V*(-foI(}@?<ZOZ)kn<_95>F
zXh5H_0DzkS`tJbuA5eKj0HnWOfhjtGuV?|NgqgztC9IhXKuVGYbWmR1{|;<J(Lv<X
z*`I>{jgSBJxYgr6X$<SxiZ1}F;%Kp70c*nl23SSTh<q{seWMMeV`;>+pnV-@`cEkS
zfxiEU^P2ZV1u$(M2N2KDbOC7CEb<iqzh-4;{9bV`)xR<HE8Io}ilQcPHvuX2fd#3R
zcm?CY+)*4BGku>ymC8W%RU!I%`N`AVjlT^Nq3nk@QuRQ7E-X0d`4B2vwzqO4)MV9j
zv#zYH3@EsUvlH;Oo|>Jd;*@s1i}rEbn-<FAcakoEA|LES>on0*yJS++W1M6`r2s*|
zfc8NX={(ZE#!>!X7RdikrCi_i464Y6v=*sNU?96d2XYCyPm0ruDtol#@*q|iC1~FO
zT52c0L@O;^Jd4(-jdOc&Z1$3tg|*F?0epqJs&=^*Myhq06L(l7=+jWRb<&s%H6~Dk
z&$C~zvr_~|%fvKmlH#IFr^*4&olKU<0J{@=L1Xv5&h*6q%=AmPpH8t5MsQcT&MSLC
zMN?P%r{33GF3#VG(~5sobkq`8$))v`MAbOA;SNf~1C+K^AKkMVuXBG3<S%%Oim|LF
z=;a@iW7GF1Iy_2;rsv*vDvAG7pDeJdvyF0l<p$M0DzHjM+0~yAkSh3Cj@THvXL*GK
zdYwP0RIxM-t4ZvR?wv~^-<JU{&Nt~7R}*Shmhg~lUwBN+_R_I!8&nd%f-Vi^JuOPg
zmO;;B^g_YO7%mE~wbCzI1YPxnbuFtiOL-&XU+$rY7wb*wXh+aBCa@Bcs0G{InHdhp
zMkLcClyP{MebMJ~f)UnhzJ8rWV*~+v6<thq#6KIA1UcJYlVM80x?62=4st`oTEdJb
zGYv!UWd5e*FwOQr4imT3zV%lZnEqmB<{oCJvXfhj<Qe1bTSVYz5uX)fPTq&)Xl8tA
zCKvmv$B@#x-7WoD?v;HIMOH-JX)e_c47~e#45`*CtEd;jOnB>$B+pR)GcN6<^s*m2
zw~Esp-+wLT<oeF5ZJ<DLjznGpFyfuK=B>KnR=~k9eO1#ZC!J3!`7#!pF4OE&q42_(
zcZqU$IoEnXvE+cw!~<G@pK{%RjU&#_M4)h8^2aBFZDP_$Wd)~1Erel*{xeiGMCoN|
zVY_7P!LEMlY;VNm_IYzW5UnILc0xP|6(~Y!D=LzrjLWH-(Lz()FPZ)h2a2=l#u#n8
z>#@+#&@eJGdM%`&i~LY7{geg|QjP-RSxuTE18$NSPC&l@yB~<?eT4=r*GtI+-wBtE
zcSR$(Rp<45Rc3!G#M+U|U{xwGV16k<2R8aKIlr{})gxWQh%+*-*eA*u%Z!W+h1T1B
zHJw-=D-P)PR(N6~`T9D5;iDn3Zk@rPGRkrJtp-K@Rg&r``M+#fNz{n^za#NigZ0$|
zP6_(I3{=>EnHIplD2D(6y%`wX`bi#2stE{}UzgMgGWPxd@Hk$36MUX55Ss%c=55^Q
z{=f|TcRc?8k9m95{{Ij@<9A(wnw0eP^Z=8G5qf$~^m0B?>Lcj3pCAh(l@v=BG}=}U
z(JOD$E-+9(>#DJ7JJVEERn^eI`M0J)F*`#_(14%%pCaM^5Fr15-Mj<;*54i-lmnPx
zo8>lu+cRvcSU%hSpuqpIgI59Uyu`#rAT)<Wg`hJ&4Y8+yV)lBXcoy*~#$HQlUTJ~<
z9L)a*Ssz8&e2-7x4ToIs+&kHqyfmMeq}bEe2Ya9XO5cAuet3Ser+w?4jRSaWpd1RQ
z)cF^y^?#n~DcWMCBk)3-b=>6j3>0%wKKRj)%o|ATvq?tvk7PLh5M(gaWA0Cvb;!Zg
zL*LM;RUA38dF@I=DH_1inP@e!vTk6{*hff~92kQ7{kMINTQ6gZybY<?PY$Qc_;-1A
ze2H%5IQAOtq5!QX1&%d|!gW3+%e}REf~-}2@09FMkO)8{6`QLn6)%`vju<R7u6UYm
z#WPec)@XBe8-8mPBva2ouTgEf&hIteA-)p$&ZyL%Mdk2&>}=_1!ZKokRXmOj;MhRQ
z=7uxh@;41jWf8zs3N-$3gSv1GV%!d<S}zD_VxfX&c@s^YA!zUM%ncVi{N6}PC~#<E
zNzlR7xhc@jt6Txx$g=xZYn}bh&x@&F>oXcx?vq{dS2Y81vpyoPqU%MGXqX@q@sl4!
zjHw4cTfNc`9>OEk!Rh(be5*b(4=$Z(IJCpq0@ZcaZjqd=-_JI-Ne{8NZ84V%tlYF>
zS?wJsG%@~B-L!l4C!BO6L}&?PBo$uXOLVq5Z~NXTg2ih>?07O-$WvDk0eGPAvl2xk
zusp@N(WXey@2&~LPok;c`1eLAArmV6X3DL2T}<WDt4V{xo^%UOx9?kx1`-*(cCrPI
zV7MCs{@6*IwzbOjij%sbCZ||5s*qdZ6FpM_d&M*s14kE<(I7G~S@?DXz6rfHw*m^E
zs6&F=Ma23$FTgN@V)Ws(oC)}|`%XmUd0x8ydNpfaPOz6<eG6Bo;%e}zrJkbKYq@SE
zbI1B&d-v0S(1LS{zCxwCFf4CYtKetPcQGx`lL`rijC?EiMUgro{m#~Q%`}J4v79FT
zU417$mn6^j?7;p_&P9uC$6xk2OU{J?3G2Tu<9}qeJTcIPU2ZAKnSY(iNr6CPbpPRG
z{9iT$)m^{%uCA`c#l=~nzJZuuMA=^LNC@@!gKICK<=ZPjr6ZM&Q31Wh6~B84xNCJw
T-Gu}Jasia7yjZ#DH^2V{Nl?%j

literal 0
HcmV?d00001

diff --git a/windows/keep-secure/vpn-auto-trigger-profile.md b/windows/keep-secure/vpn-auto-trigger-profile.md
index 6bce6b2514..e6d3fd33ea 100644
--- a/windows/keep-secure/vpn-auto-trigger-profile.md
+++ b/windows/keep-secure/vpn-auto-trigger-profile.md
@@ -15,8 +15,53 @@ localizationpriority: high
 -   Windows 10
 -   Windows 10 Mobile
 
+In Windows 10, a number of “auto-triggering” features were added to VPN so users won’t have to manually connect when VPN is needed to access necessary resources. There are three different types of auto-trigger rules: 
+
+- App trigger
+- Name-based trigger
+- Always On
+
+## App trigger
+
+You can configure apps (desktop or Universal Windows Platform) to trigger a VPN connection. You can also configure per-app VPN and specify traffic rules for each app. See [Traffic filters](vpn-security-features.md#traffic-filters) for more details.
+
+The app identifier for a desktop app is a file path. The app identifier for a UWP app is a package family name.
+
+[Find a package family name (PFN) for per-app VPN configuration](https://docs.microsoft.com/intune/deploy-use/find-a-pfn-for-per-app-vpn)
 
 
+## Name-based trigger
+
+
+## Always On
+
+Always On is a new feature in Windows 10 which enables the active VPN profile to connect automatically on the following triggers: 
+
+- User sign-in 
+- Network change 
+- Device screen on 
+
+When the trigger occurs, VPN tries to connect. If an error occurs or anyuUser input is needed, the user is shown a toast notification for additional interaction. 
+
+When a device has multiple profiles with Always On triggers, the user can specify the active profile in **Settings** > **Network & Internet** > **VPN** > *VPN profile* by selecting the **Let apps automatically use this VPN connection** checkbox. By default, the first MDM-configured profile is marked as **Active**. 
+
+## Trusted network detection
+
+
+
+## Configure ,,,
+
+See [VPN profile options](vpn-profile-options.md) and [VPNv2 CSP](https://msdn.microsoft.com/library/windows/hardware/dn914776.aspx) for XML configuration. 
+
+The following image shows name resolution options in a VPN Profile configuration policy using Microsoft Intune.
+
+![Add DNS rule](images/vpn-name-intune.png)
+
+The fields in **Add or edit DNS rule*- in the Intune profile correspond to the XML settings shown in the following table.
+
+| Field | XML |
+| --- | --- |
+| **Name*- | **VPNv2//*ProfileName*/DomainNameInformationList//*dniRowId*/DomainName*-  |
 
 ## Related topics
 
diff --git a/windows/keep-secure/vpn-name-resolution.md b/windows/keep-secure/vpn-name-resolution.md
index 68db0e48c1..b759641480 100644
--- a/windows/keep-secure/vpn-name-resolution.md
+++ b/windows/keep-secure/vpn-name-resolution.md
@@ -15,6 +15,69 @@ localizationpriority: high
 -   Windows 10
 -   Windows 10 Mobile
 
+When the VPN client connects to the VPN server, the VPN client receives the following addresses:
+
+- Client IP address
+- IP address of the Domain Name System (DNS) server
+- IP address of the Windows Internet Name Service (WINS) server
+
+The VPN client can access intranet resources by using names, which can be resolved to IP addresses using DNS-based and WINS-based resolution. DNS and WINS name resolution require a server address to be provisioned on the VPN client.
+
+The name resolution setting in the VPN profile configures how name resolution should work on the system when VPN is connected. The networking stack first looks at the Name Resolution Policy table (NRPT) for any matches and tries a resolution in the case of a match. If no match is found, the DNS Suffix is appended to the name and a DNS query is sent out on all interfaces. 
+
+## Name Resolution Policy table (NRPT)
+ 
+The NRPT is a table of namespaces that determines the DNS client’s behavior when issuing name resolution queries and processing responses. It is the first place that the stack will look after the DNSCache.
+
+There are 3 types of Name matches that can be set up for NRPT
+
+- Fully qualified domain name (FQDN) that can be used for direct matching to a name
+
+- Suffix match results in either a comparison of suffixes (for FQDN resolution) or the appending of the suffix (in case of a short name)
+
+- Any resolution should attempt to first resolve with the proxy server/DNS server with this entry
+
+Examples of the following in VPNv2 CSP can be found here. 
+
+NRPT is set using the **VPNv2//*ProfileName*/DomainNameInformationList** node. This node also configures Web proxy server or domain name servers. 
+
+[Learn more about NRPT](https://technet.microsoft.com/library/ee649207%28v=ws.10%29.aspx)
+
+ 
+## DNS suffix
+
+This setting is used to configure the primary DNS suffix for the VPN interface and the suffix search list after the VPN connection is established.
+
+Primary DNS suffix is set using the **VPNv2//*ProfileName*/DnsSuffix** node.
+
+Currently, this can only be configured in [custom XML in the ProfileXML node](vpn-profile-options.md).
+
+[Learn more about primaryDNS suffix](https://technet.microsoft.com/library/cc959611.aspx)
+
+## Persistent
+
+You can also configure *persistent* name resolution rules. Name resolution for specified items will only be performed over VPN.
+
+Persistent name resolution is set using the **VPNv2//*ProfileName*/DomainNameInformationList//*dniRowId*/Persistent** node.
+
+Currently, this can only be configured in [custom XML in the ProfileXML node](vpn-profile-options.md).
+
+## Configure name resolution
+
+See [VPN profile options](vpn-profile-options.md) and [VPNv2 CSP](https://msdn.microsoft.com/library/windows/hardware/dn914776.aspx) for XML configuration. 
+
+The following image shows name resolution options in a VPN Profile configuration policy using Microsoft Intune.
+
+![Add DNS rule](images/vpn-name-intune.png)
+
+The fields in **Add or edit DNS rule** in the Intune profile correspond to the XML settings shown in the following table.
+
+| Field | XML |
+| --- | --- |
+| **Name** | **VPNv2//*ProfileName*/DomainNameInformationList//*dniRowId*/DomainName**  |
+| **Servers (comma separated)** | **VPNv2//*ProfileName*/DomainNameInformationList//*dniRowId*/DnsServers**  |
+| **Proxy server** |  **VPNv2//*ProfileName*/DomainNameInformationList//*dniRowId*/WebServers**  |
+
 ## Related topics
 
 - [VPN technical guide](vpn-guide.md)
diff --git a/windows/keep-secure/vpn-security-features.md b/windows/keep-secure/vpn-security-features.md
index d6342a7305..6723cbde34 100644
--- a/windows/keep-secure/vpn-security-features.md
+++ b/windows/keep-secure/vpn-security-features.md
@@ -15,6 +15,33 @@ localizationpriority: high
 -   Windows 10
 -   Windows 10 Mobile
 
+
+## Lockdown VPN
+
+Lockdown VPN is a setting in VPN which can enforce an Always On force tunneled VPN. The system will attempt to keep this VPN connection connected, and networking data will only be allowed to go over the VPN Interface. The only exceptions here are for getting underlying network connectivity going as well as for MDM configuration. Deploy this feature with caution as the resultant connection will not be able to send/receive any network traffic without the VPN being connected. 
+This can be configured using 
+VPNv2/ProfileName/LockDown
+This is not currently supported to be configured via Intune/SCCM. This can be configured via a custom XML in the ProfileXML node. 
+
+
+## Traffic filters
+
+Traffic filters is a feature that enables admins to effectively add interface specific firewall rules on the VPN Interface. With this feature, admins can specify networking 5 Tuple policies (IP, Port and Protocol based) to allow through the VPN interface. In addition, these rules can be applied at a per app level or a per device level. For eg. An admin could say that the Contoso HR App must be allowed to go through the VPN and only access port 4545 additionally the Contoso finance apps is allowed to go over the VPN and only access the Remote IP ranges of 10.10.0.40 - 10.10.0.201 on port 5889, apart from this all other apps on the device should be able to access only ports 80 or 443.  
+
+## Windows Information Protection (WIP) integration with VPN
+
+Windows Information Protection provides capabilities allowing the separation and protection of enterprise data against disclosure across both company and personally owned devices without requiring additional changes to the environments or the apps themselves.  Additionally, when used with Rights Management Services (RMS), WIP can help to protect enterprise data locally.
+In Windows 10, the Policy CSP was updated allowing administrators to enforce WIP policy. The VPNv2 CSP EdpModeId node allows a Windows 10 VPN client to integrate with WIP, extending its functionality to remote devices. Use case scenarios for WIP include:
+•	Core Functionality: File encryption and file access blocking
+•	UX Policy Enforcement: Restricting copy/paste, drag/drop, and sharing operations
+•	EDP Network Policy Enforcement: Protecting intranet resources over corpnet and VPN
+•	Network Policy Enforcement: Protecting SMB and Internet cloud resources over corpnet and VPN
+The value of the EdpModeId is an Enterprise ID. The networking stack will look for this ID in the app token to determine whether VPN should be triggered for that particular app. 
+
+This is not currently supported to be configured via Intune/SCCM. This can be configured via a custom XML in the ProfileXML node. 
+
+
+
 ## Related topics
 
 - [VPN technical guide](vpn-guide.md)