Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Edit, Clone, and Delete Exempt Rule

Edit an Exempt Rule

You can edit exempt rules associated only with customized IPS profiles, and not the rules associated with predefined (system-generated) profiles.

To edit an exempt rule:

  1. Select Secure Edge > Security Subscriptions > IPS.

    The IPS Policy page appears.

  2. Click the EXEMPT RULES tab, then select the rule.
  3. Click edit (pencil) icon.

    The rule selected for editing is displayed inline at the top of the page.

  4. Modify the rule. See Create Exempt Rule.
  5. Click the check mark () to save your changes.

    The changes are saved and a confirmation message is displayed at the top of the page.

    If the exempt rule belongs to an IPS profile that is referenced in a firewall policy intent, then the firewall policy is marked for deployment. You must deploy the firewall policy for the changes to take effect on the device.

Clone an Exempt Rule

Cloning enables you to easily create an exempt rule based on an existing one. You can clone exempt rules associated only with customized IPS profiles, and not rules associated with predefined (system-generated) profiles.

To clone an exempt rule:

  1. Select Secure Edge > Security Subscriptions > IPS.

    The IPS Policy page appears.

  2. Click the EXEMPT RULES tab.
  3. Select a rule, and select More > Clone.

    The rule selected for cloning is displayed inline at the top of the page.

  4. Modify the rule. See Create Exempt Rule.
  5. Click the check mark () to save your changes.

    The new rule is created and a confirmation message is displayed at the top of the page.

Delete Exempt Rules

You can delete exempt rules associated only with customized IPS profiles, and not the rules associated with predefined (system-generated) profiles.

To delete exempt rules:

  1. Select Secure Edge > Security Subscriptions > IPS.

    The IPS Policy page opens.

  2. Click the EXEMPT RULES tab.
  3. Select one or more rules, and click the delete (trash can) icon.

    A warning message asking you to confirm the deletion is displayed.

  4. Click Yes.

    A message indicating the status of the delete operation is displayed at the top of the page.

    If the deleted exempt rule belongs to an IPS profile that is referenced in a firewall policy intent, then the firewall policy is marked for deployment. You must deploy the firewall policy for the changes to take effect on the device.