: Remove the Temporary Rules
Table of Contents

Remove the Temporary Rules

After several months of monitoring your initial internet gateway best practice security policy and tuning the rulebase, you should see less and traffic that you want to allow matching the temporary rules. When you no longer see traffic that you want to allow matching these rules, you've achieved your goal of transitioning to a fully application-based Security policy rulebase. You can now remove the temporary rules, including the application block rules for applications that don't have a legitimate use case and for public DNS and SMTP applications because the default interzone-default deny rule automatically blocks that traffic since it matches no explicit allow rules. (Keep the rules that QUIC.)
  1. Select
  2. Select the rule and click
    the rules for a period of time before deleting them. This allows you to
    them again if Traffic logs show that traffic you want to allow matches the interzone-default deny rule.
  3. Commit
    the changes.

Recommended For You