Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 27 subscribers
  • Views 15764 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

What does unused policy mean?

Phaser

What does unused policy mean? A lot of action on the sophos are embedded and just have no idea what they are rules wise. So when I add a rule never seems to be used and see the unused policy in the dashboard.  



This thread was automatically locked due to age.
Parents
  • 0

    "Unused" simply means that the byte count inbound AND outbound has remained unchanged for a "period" of time. I am not sure what that "period" is at the moment. However, do not blithely assume that the rule is redundant and unnecessary. I've seen circumstances (of my own and other's creation) in which the rule reports "unused" but that is the result of a misconfiguration.

    For example, a rule created with "Match known users" active on a firewall without "user authentication" configure will show up as "unused".

     

    Regards,

    Gary Gunderson  - XG Architect

Reply
  • 0

    "Unused" simply means that the byte count inbound AND outbound has remained unchanged for a "period" of time. I am not sure what that "period" is at the moment. However, do not blithely assume that the rule is redundant and unnecessary. I've seen circumstances (of my own and other's creation) in which the rule reports "unused" but that is the result of a misconfiguration.

    For example, a rule created with "Match known users" active on a firewall without "user authentication" configure will show up as "unused".

     

    Regards,

    Gary Gunderson  - XG Architect

Children
No Data