- Products
- Network Security
Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
Security ServicesComprehensive security for your network security solution
Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
Capture ATPMulti-engine advanced threat detection
Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
Secure Mobile AccessRemote, best-in-class, secure access
Wireless Access PointsEasy to manage, fast and secure Wi-FI
SwitchesHigh-speed network switching for business connectivity
- Email Security
Email SecurityProtect against today’s advanced email threats
- Cloud Security
Cloud App SecurityVisibility and security for Cloud Apps
Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
Capture ClientStop advanced threats and rollback the damage caused by malware
Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
- Products
- Network Security
- Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
- Security ServicesComprehensive security for your network security solution
- Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
- Capture ATPMulti-engine advanced threat detection
- Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
- Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
- Secure Mobile AccessRemote, best-in-class, secure access
- Wireless Access PointsEasy to manage, fast and secure Wi-FI
- SwitchesHigh-speed network switching for business connectivity
- Email Security
- Email SecurityProtect against today’s advanced email threats
- Cloud Security
- Cloud App SecurityVisibility and security for Cloud Apps
- Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
- Capture ClientStop advanced threats and rollback the damage caused by malware
- Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
Components of a Security Policy in SonicOSX 7.0
08/31/2020 
1 People found this article helpful
6,741 Views
Description
There are three steps at high level on SonicOSX 7.0 which can be observed below where first section is the match attribute used to classify the packet, perform the rule lookup and then rule match; second section being the action taken on the packet and third section as action profile used to take those additional actions (BWM,Security Services etc).
SonicOSX 7.0 combines layer 4 and 7 policies, providing admins a centralized location for configuring policies.
Resolution
Match criterion
We can match the traffic based on the following parameters
- Source and destination zone
- IP version - IPv4/IPv6
- Source and destination address
- Source and destination port/services
- Users to be included
- Geo location
- Application
- Web category
- URL
- Custom match
- Schedules
We use the Source/Destination and App/URL/Custom Match tabs in the security policy to match.
Actions
There are three types of actions that can be taken once the match is done:
- Allow
- Deny
- Discard
We use the Action section of the security policy to take any necessary action.
Action Profile
Along with the actions stated above, there are some additional actions that can be taken for certain types of traffic.
- Bandwidth management and QoS
- Apply security services like GAV, Anti -Spyware, IPS and Botnet filtering
- Perform additional CFS actions, such as a passphrase, confirm, safe search, consent, wipe cookies, etc
- Reporting, logging, and Syslog
- Adjusting miscellaneous settings such as connection timeouts, SIP/H323 settings, etc
We use a security rule Action to apply additional actions to the matched traffic and selected action type.
Once a security rule is added, it can be divided into these three sections easily and can be depicted in the same way on the UI.
Related Articles
- Configuring Aggressive Mode Site to Site VPN when a Site has Dynamic WAN Public IP address
- High Availability: Idle / Standby appliance cannot pass traffic, WAN and LAN side.
- How do I configure the SSL-VPN feature for use with NetExtender or Mobile Connect?
YES
NO