You are here: Configure > Security Services > Security Policy > Rules.
Use this page to get a high-level view of your firewall policy rules settings. The security policy applies the security rules to the transit traffic within a context (from-zone to to-zone). The traffic is classified by matching its source and destination zones, the source and destination addresses, and the application that the traffic carries in its protocol headers with the policy database in the data plane
You can perform the following tasks from this page:
Add Global Options. See Global Options.
Add a Rule. See Add a Rule.
Edit a Rule. See Edit a Rule.
Clone a Rule. See Clone a Rule.
Delete a Rule. See Delete Rules.
Advanced search for policy rule. To do this, use the search text box present above the table grid. The search includes the logical operators as part of the filter string. In the search text box, when you hover over the icon, it displays an example filter condition. When you start entering the search string, the icon indicates whether the filter string is valid or not.
For an advanced search:
Based on your input, a list of items from the filter context menu appears.
Note Press Spacebar to add an AND operator or OR operator to the search string. Press backspace at any point of time while entering a search criteria, only one character is deleted.
Filter the policy rule profiles based on select criteria. To do this, select the filter icon at the top right-hand corner of the policy rule table. The columns in the grid change to accept filter options. Type the filter options; the table displays only the data that fits the filtering criteria.
Show or hide columns in the policy rule table. To do this, click the Show Hide Columns icon in the top right corner of the policy rule table and select the options you want to view or deselect the options you want to hide on the page.
Table 183 describes few more options on Rules.
Table 183: More options on Rules
Field | Description |
|---|---|
Add Rule Before | Adds a new rule before the selected rule. |
Add Rule After | Adds a new rule after the selected rule. |
Copy | Copies a selected rule and enables you to paste it before or after the selected rule. |
Cut | Removes the selected rule from its row and enables you to paste it before or after the selected rule. |
Paste | Pastes the copied or cut rule before or after the rule selected for copy. |
Clone | Clones or copies the selected firewall policy configuration and enables you to update the details of the rule. |
Move Rule | Organizes records. Select a rule and choose Move up, Move down, Move to top, or Move to bottom to reposition the rule. |
Disable | Disables the selected rule. |
Enable | Enables the selected rule if it was disabled. |
Clear Selection | Clears the selection of those rules that are selected. |
Table 184 describes the fields on the Policy Rules page.
Table 184: Fields on the Policy Rules page
Field | Description |
|---|---|
Seq | Displays the sequence number of rules in a zone pair. |
Hit Count | Displays the number of hits the rule has encountered. |
Rule Name | Displays the rule name. |
Source Zone | Displays the source zone that is specified in the zone pair for the rule. |
Source Address | Displays the name of the source address or address set for the rule. |
Source Identity | Displays the user identity of the rule. |
Destination Zone | Displays the destination zone that is specified in the zone pair for the rule. |
Destination Address | Displays the name of the destination address or address set for the rule. |
Dynamic Application | Displays the dynamic application names for match criteria in application firewall rule set. An application firewall configuration permits, rejects, or denies traffic based on the application of the traffic. |
Service | Displays the type of service for the destination of the rule. |
URL Category | Displays the URL category that you want to match criteria for web filtering category. |
Action | Displays the actions that need to take place on the traffic as it passes through the firewall. |
Rule Options | Displays the rule option while permitting the traffic. |
Advanced Security | Displays the security option that apply for this rule. |