What can I do here?
Use this window to view, edit, delete policies or create new ones.
Getting Here - Menu > Manage policies and layers Or: Security Policies > click (+) tab > Manage Policies > Manage policies and layers link |
A policy package is a collection of different types of policies. After installation, the Security Gateway enforces all the policies in the package. A policy package can have one or more of these policy types:
The installation process:
If there are verification errors, the policy is not installed. If there are verification warnings (for example, if anti-spoofing is not enabled for a Security Gateway with multiple interfaces), the policy package is installed with a warning.
You can create different policy packages for different types of sites in an organization.
Example:
An organization has four sites, each with its own requirements. Each site has a different set of Software Blades installed on the Security Gateways:
Item |
Security Gateway |
Installed Software Blades |
---|---|---|
1 |
Sales California |
Firewall, VPN |
2 |
Sales Alaska |
Firewall, VPN, IPS, DLP |
3 |
Executive management |
Firewall, VPN, QoS, and Mobile Access |
4 |
Server farm |
Firewall |
5 |
Internet |
|
To manage these different types of sites efficiently, you need to create three different Policy Packages. Each Package includes a combination of policy types that correspond to the Software Blades installed on the site's gateway. For example:
Install the Access Control policy package on all Security Gateways.
Install this policy package on the executive management Gateway.
Install this policy package on the executive management Gateway.