Rule Set: Specific rules

Use this panel to optionally add one or more specific rules to this rule set.

A specific rule is a rule that describes exceptions to the general rule for this security protocol. In most cases, you create a general rule to describe your installation’s overall requirements for this security protocol, and then you create specific rules to describe exceptions to the general rule.

You can also code specific rules without creating a general rule.

Result: When installed into policy agent, specific rules will be evaluated against a connection after the general rule, in the order that they are specified in the rule set. The first rule (general or specific) that matches the connection will be used.

This panel presents a table that shows all of the existing reusable specific rules for the security protocol of the rule set.

Steps:
  1. Click on rows in the table to select or deselect existing reusable reusable specific rules. All selected rules will be placed into the rule set in the order shown in this table.
  2. If you need to create a new reusable specific rule, click Actions > New.
  3. If the order in which the selected rules are shown in the table is not correct for this rule set, click Actions > Order selected rules to go to a panel you can use to reorder the selected rules.

You have completed this panel when you have selected all applicable specific rules for this rule set in this table, and you have ensured they are in the correct order.

Related link: General vs specific rules