Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
JaySon_2021
Participant

Install multiple policies R80.40

If I have say 4 firewalls managed by an R80.40 manager and I have 5 policies. 1 each for the individual firewalls where a single firewall is the policy target (ie: policyA target is fw1, policyB target is fw2, etc). Then I have another policy that installs to ALL gateways. Will pushing policyA to fw1, and then I push the policy that installs to ALL gateways, will it overwrite the policyA on fw1?

0 Kudos
3 Replies
G_W_Albrecht
Legend Legend
Legend

If you change the policy package that gets installed the new policy will replace the old policy, of course !

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
JaySon_2021
Participant

Thanks. What if I had just Acesss control in policyA and then only Threat in the policy that gets installed to ALL firewalls. Would those layers merge on FW1?

0 Kudos
PhoneBoy
Admin
Admin

It's certainly possible to have a shared Threat Prevention layer that is included in each policy package.
The restriction about what gateway gets what policy is done at the policy package level.
That impacts both the Access Control and Threat Prevention policy install process.

Which effectively means: you will have to perform an explicit policy install for each gateway to update the Threat Prevention policy across all your gateways, even if the policy layer is identical across all your policy packages.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events