...
| Note | ||
|---|---|---|
| ||
| To provide flexibility and support for the new policy types, Infoblox Threat Defense has updated the evaluation process for security policies. Previously, Infoblox Endpoint and DNS forwarding proxy had implicit precedence over external networks. After the update, the policies are evaluated in the order you define and observe on the Security Policies page of the Infoblox Portal. If you have existing security policies, the policy precedence is updated to match the behavior that was defined before the update. |
Infoblox Threat Threat Defense provides a default global policy that gives you a head start in protecting your networks. You can review the default global policy, and decide whether you want to add or remove some of the rules based on your business requirements.
...
The Security Policies page displays the following information for each security policy you have configured by default:
- PRECEDENCE ORDER: Infoblox Threat Defense enforces security policies in an ascending precedence order in which the policy rule with the lowest precedence order has the highest priority in the evaluation process. The precedence order for executing rules in a security policy, from highest to lowest order of precedence, is as follows:
1. Custom Default Lists
2. Feeds Custom Lists
3. Threat intelligence Feeds and Threat insights
4. Category Filters
5. DefaultApplication Filters - NAME: The policy name.
- DEFAULT ACTION: The default action currently configured for the entities that are not included in the network scope.
- DESCRIPTION: The policy description.
For additional information on precedence order, see Precedence Rules for Security Policies.
You can also click the expandable menu icon to choose the following columns for display:
...