The policy category contains events that are related to administration of network policy and the monitoring network resources for policy violations.
The following table describes the low-level event categories and associated severity levels for the policy category.
Table 1: Low-level Categories and Severity Levels for the Policy Category
Low-level event category
Severity level (0 - 10)
Unknown Policy Violation
Indicates an unknown policy violation.
Web Policy Violation
Indicates a web policy violation.
Remote Access Policy Violation
Indicates a remote access policy violation.
IRC/IM Policy Violation
Indicates an instant messenger policy violation.
P2P Policy Violation
Indicates a Peer-to-Peer (P2P) policy violation.
IP Access Policy Violation
Indicates an IP access policy violation.
Application Policy Violation
Indicates an application policy violation.
Database Policy Violation
Indicates a database policy violation.
Network Threshold Policy Violation
Indicates a network threshold policy violation.
Porn Policy Violation
Indicates a porn policy violation.
Games Policy Violation
Indicates a games policy violation.
Misc Policy Violation
Indicates a miscellaneous policy violation.
Compliance Policy Violation
Indicates a compliance policy violation.
Mail Policy Violation
Indicates a mail policy violation.
IRC Policy Violation
Indicates an IRC policy violation
IM Policy Violation
Indicates a policy violation that is related to instant message (IM) activities.
VoIP Policy Violation
Indicates a VoIP policy violation
Indicates a policy successful message.
Indicates a policy failure message.
Data Loss Prevention Policy Violation
Indicates a data loss prevention policy violation.
Indicates a watchlist object.
Web Policy Allow
Indicates a new web policy allowance.