If we want to block endpoints with RED status, it seems that it's easier to achieve at the Endpoint policy -> Device Isolation INSTEAD OF editing XG firewall rules and setting them to block access if the source hearbeat (HB) is RED.
It works very well in Sophos Cloud Endpoint.
Is it going away in the XG or does that setting in the XG achieve a different end? I'm going post in XG community forum as well. But thought it would be ok to inquire in this forum.
This thread was automatically locked due to age.
