Manualshelf

User Guide

ManualsBrandsAlcatel-Lucent ManualsOtherOMNIACCESS SAFEGUARD CONTROLLER
291292293294295296297298299300
OmniAccess SafeGuard OS Administration Guide
300
Chapter 7: Establishing a Security Policy
1 The ranking of the type of policy
2 The precedence of the policy within a policy type
Policies have an internal ranking system that stacks the policies in the order shown in
Figure 8. This ranking is done by SafeGuard OS and cannot be overridden by users.
Figure 8 Order of Policy Enforcement
Precedence
Malware and user policies allow you to assign a precedence number to rules and policies.
These precedence numbers for policies are secondary to the overall ranking of the
policies; the precedence numbers for rules are tertiary (nested within a policy).
Filter Precedence
Because a policy can have many rules, a precedence number can be assigned to the filter
statements of a rule. The precedence of a filter will determine the order in which the rule
is applied for a specific user. Precedence numbers can be in the range of 1 to 65535, where
1 has the highest precedence and 65535 the lowest.
If you do not specify a precedence number on a filter, SafeGuard OS assigns a precedence
number for you (auto-precedence). The system assigns the precedence in the sequential
order the filters are configured. If you already have precedence numbers assigned on
other filter statements in the policy, SafeGuard OS adds 10 to the highest number and
assigns it to the rule. If you do not have any precedence numbers on the rules within a
policy, SafeGuard OS begins assigning precedence numbers beginning with 10 and
adding in increments of 10.
CST_057
enforcement
White-Black List
Malware Policies
Override Policies
System Policies
EPV Policies
User Policies