This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Maik
Advisor
‎2018-10-29 02:12 AM

Access Control - Dealing with hidings (UID instead of No. descriptor)

Hello,

Just a small thing that came into my mind during the last weeks and also today. I currently have to manage some real big rule bases (1000+ rules in each policy) and work with several people in the team. Every now and then we have hidings - sometimes lots of them. That means, up to 10+ entries in the policy verification info slide. I realized, that the formatting of this info is not optimal, as it reads like this:

"Error: Layer xyz: Rule xyz hides rule xyz for Services & Applications xyz

Rule xyz1 hides rule xyz1 for Services & Applications xyz1

Rule xyz2 hides rule xyz2 for Services & Applications xyz2

Rule xyz3 hides rule xyz3 for Services & Applications xyz3

Rule xyz4 hides rule xyz4 for Services & Applications xyz4"

The first thing that came into my mind is; why does the formatting look that strange - shouldn't the first entry also be in a new line after the colon? But that is just a very small cosmetic thing, not a real problem. The main issue I have is, that the rule description is based on the actual number of the rule (No. column) instead of the rule id (UID) or the name (considering it was named in a unique way). I often end oft cleaning the hidings and need to verify the policy again and again after each mentioned point, just because the rule numbers change when I delete a specific rule if it's been fully hidden and not necessary anymore. Is there a way to change the details section of policy verification and other errors to show the rule id (UID) instead of the rule number (No.)?

If not - are there other people here who think that feature would make sense to maybe include in a future release?

Regards,

Maik

3 Replies
This widget could not be displayed.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    Virtual

    Tue 23 Apr 2024 @ 11:00 AM (EDT)

    East US: What's New in R82
    Virtual

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap

    Thu 25 Apr 2024 @ 10:00 AM (CEST)

    The Anatomy of a Cloud Hack by NotSoSecure - EMEA Session

    Thu 25 Apr 2024 @ 06:00 PM (IDT)

    The Anatomy of a Cloud Hack by NotSoSecure - America Session
    Virtual

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap
    Virtual

    Thu 02 May 2024 @ 11:00 AM (SGT)

    APAC: What's new in R82
    Virtual

    Tue 23 Apr 2024 @ 11:00 AM (EDT)

    East US: What's New in R82
    Virtual

    Thu 25 Apr 2024 @ 11:00 AM (SGT)

    APAC: CPX 2024 Recap
    Virtual

    Tue 30 Apr 2024 @ 03:00 PM (CDT)

    EMEA: CPX 2024 Recap
    Virtual

    Thu 02 May 2024 @ 11:00 AM (SGT)

    APAC: What's new in R82
    Virtual

    Thu 02 May 2024 @ 04:00 PM (CEST)

    CheckMates Live DACH - Keine Kompromisse - Sicheres SD-WAN
    Virtual

    Thu 02 May 2024 @ 05:00 PM (CEST)

    SASE Masters: Deploying Harmony SASE for a 6,000-Strong Workforce in a Single Weekend
    CheckMates Events