...
| Note | ||
|---|---|---|
| ||
| To provide flexibility and support for the new policy types, Infoblox Threat Defense has updated the evaluation process for security policies. Previously, Infoblox Endpoint and DNS forwarding proxy had implicit precedence over external networks. After the update, the policies are evaluated in the order you define and observe on the Security Policies page of the Infoblox Portal. If you have existing security policies, the policy precedence is updated to match the behavior that was defined before the update. |
Infoblox Threat Threat Defense provides a default global policy that gives you a head start in protecting your networks. You can review the default global policy, and decide whether you want to add or remove some of the rules based on your business requirements.
...
- PRECEDENCE ORDER: Infoblox Threat Defense enforces security policies in an ascending precedence order in which the policy rule with the lowest precedence order has the highest priority in the evaluation process. The precedence order for executing rules in a security policy, from highest to lowest order of precedence, is as follows:
1. Default Lists
2. Custom Lists
3. Feeds and Threat insights
4. Category Filters
5. Appication Application Filters - NAME: The policy name.
- DEFAULT ACTION: The default action currently configured for the entities that are not included in the network scope.
- DESCRIPTION: The policy description.
For additional information on precedence order, see Precedence Rules for Security Policies.
You can also click the expandable menu icon to choose the following columns for display:
...