Override default validation settings for rules

You can define rule-specific settings for policy validation.

The rule properties allow you to view some rule-specific information and select the settings that are applied to the selected rule when the policy is validated. The rule-specific settings override the default validation options for your administrator account.

  For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Double-click the rule’s ID cell.
  2. Click the Validate tab.
  3. Edit the Validation Settings (the types of issues that are checked).
  4. Click OK.
    The selected Validation Settings are now applied to this rule when you next validate the policy. A green checkmark is added to the rule’s ID cell in the rule table. This indicates that the Validation Settings of the rule are different from those of the whole policy.

Rule Properties dialog box

Use this dialog box to define the properties of a rule.

Option Definition
General tab
Name Shows the rule name.
Rule Tag Shows the rule's tag.
Comment Shows the rule comment, if available.
Option Definition
History tab
Creator Shows the administrator who created the rule.
Created Shows the time when the rule was created.
Modifier Shows the administrator who modified the rule.
Audit History Opens the Logs view and displays the Audit log data for traffic that matches the rule.
Option Definition
Validate tab
Validation Settings for Current Administrator Specifies rule-specific settings for policy validation.

When Check All is selected, all validation checks are enabled.

  • General Checks — Finds combinations of general settings that are not valid.
  • Check Configuration — Find unsupported selections or information that is missing and required in your configuration.
    • Invalid Settings — Finds incorrect or incomplete definitions.
    • Missing Definitions — Checks that there is a definition in all mandatory matching cells (Source, Destination, and Service cells).
    • Routing Definitions (IPS and Layer 2 Firewall only) — Checks routing definitions.
    • NAT and Routing Definitions (Firewall only) — Checks the NAT and routing definitions.
    • VPN Definitions (Firewall only) — Checks the VPN configurations in the rule.
  • Analyze Rules — Finds unnecessary rules by analyzing the structure of the policy.
    • Duplicate Rules — Checks if there are any identical rules in the policy.
    • Unreachable Rules — Finds rules that are in a position in which they can never match.
Description of selected setting Provides information about the selected validation setting.