Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Mraybone
Explorer

Application Control Cleanup Rules...

Hello!

I've been putting together an application control rule for windows updates and I'm having difficulty understanding the cleanup rules.  I have an Application Control in-line layer at the bottom of my Security policy (above the drop rule).

If the Implicit action for the layer is to drop, and the explicit cleanup rule is to drop, does that drop apply to ALL traffic, or only traffic that can be affected by the application control layer?

I ask this because it appears that when my cleanup rule (to drop) is enabled, the app control rule does not work.  But when I disable the cleanup rule (and hence "unmatched traffic will be dropped and not logged"), things seem to start working.

I'm also worried that these cleanup rules might drop other non-app control destined traffic and affect how that is currently working.

Cheers!
Mark.

0 Kudos
3 Replies
This widget could not be displayed.