Create a Data Loss Prevention Rule

Follow these instructions to create a DLP rule.

There are two stages to creating a DLP rule; creation and configuration.

This stage sets up the rule type, the actions taken if the rule is triggered and whether you want to be alerted to the breaches of the rule.

To create a DLP rule:

  1. Click Create New Rule.
  2. Choose from New Content Rule or New File Rule.
  3. Give the rule a Name and a Description.
  4. Click Send me email alerts if you want notifying when the rule is breached.
    Note You will not get an alert in Sophos Central.
  5. For a File rule, choose whether you want to match against a file name or a file type as the conditions for the rule. You will give the details when you configure the rule.
    Note Conditions are required for a Content rule and you cannot set the condition type.
  6. Specify if you want to exclude by a file name or by file type. You will give the details when you configure the rule.
  7. Specify the actions for the rule. Choose from:
    • Allow file transfer.
    • Allow transfer if user confirms.
    • Block transfer.
  8. Click Next: Rule Configuration.