Add Access rules

Access rules are used in Firewall, IPS, Layer 2 Firewall, and Layer 2 Interface Policies.

Before you begin

You must have a custom Policy element and permissions to edit it.

Firewalls, IPS engines, Layer 2 Firewalls, Virtual Firewalls, Virtual IPS engines, and Virtual Layer 2 Firewalls use both IPv4 Access rules and IPv6 Access rules. Master NGFW Engines only use IPv4 Access rules.

  For more details about the product and how to configure features, click Help or press F1.


  1. Select Configuration.
  2. Expand the Policies tree and select a type of policy (for example, Firewall Policies).
  3. Open a Template Policy, Policy, or Sub-Policy for editing.
  4. On the IPv4 Access tab or to the IPv6 Access tab, add a rule in one of the following ways:
    • Right-click the ID cell of an existing rule and select Add Rule Before or Add Rule After.
    • Copy and paste an existing rule.
  5. Specify the matching criteria.
  6. Right-click the Action cell, then select the Action.
  7. (Optional) Define options for triggering logs and alerts.