Create a firewall event rule

If you use role-based administration:

  • You must have the Policy setting - firewall right to configure a firewall policy.
  • You cannot edit a policy if it is applied outside your active sub-estate.

For more information, see Managing roles and sub-estates.

You can create rules for all firewall events except the “modified memory” events.

To create a firewall event rule:

  1. On the Events menu, click Firewall Events.
  2. In the Firewall - Event Viewer dialog box, select an event for the application you want to create a rule for and click Create Rule.
  3. In the dialog box that appears, select an option that you want to apply to the application.
  4. Select which location you want to apply the rule to (primary, secondary, or both). If you select to apply the rule to the secondary location or both locations, the rule will be added only to policies which have a secondary location configured. Click OK.
    Note The “new application” and “modified application” events are location independent (they add checksums which are shared between both locations). You cannot select a location for these events.
  5. From the list of firewall policies, select a policy or policies which you want to apply the rule to. Click OK.
    Note You cannot add a rule to a policy that is applied outside your active sub-estate.
Note If you want to create an application rule directly from a firewall policy, using the advanced firewall policy configuration pages, see Create an application rule from a firewall policy.