Dell SonicWall SRA 4200 Administrator's Manual page 262

Configuring Rule Chains
You can add, edit, delete and clone rule chains. Example rule chains (with Rule Chain ID
greater than 15000) are available in the management interface for administrators to use as
reference. These cannot be edited or deleted. You can view the rules associated with the rule
chain by clicking its Edit Rule Chain icon under Configure.
For ease of configuration, you can clone example rule chains or regular rule chains. Cloning a
rule chain clones all rules associated with the chain. After cloning the rule chain, you can edit
it by clicking its Edit Rule Chain icon under Configure.
Adding or Editing a Rule Chain
To add or edit a rule chain, perform the following steps:
On the Web Application Firewall > Rules page, click the Add Rule Chain button to add a new
Step 1
rule chain.
To edit an existing rule chain, click its Edit Rule Chain icon
The New Rule Chain screen or the screen for the existing rule chain displays. Both screens
have the same configurable fields in the Rule Chain section.
On the New Rule Chain page, type a descriptive name for the rule chain in the Name field.
Step 2
Select a threat level from the Severity drop-down list. You can select HIGH, MEDIUM, or LOW.
Step 3
Select Prevent, Detect Only, or Disabled from the Action drop-down list.
Step 4
•
•
•
262 | SRA 6.0 Administrator's Guide
Prevent – Block traffic that matches the rule and log it.
Detect – Allow the traffic, but log it.
Disabled – The rule chain should not take effect.
under Configure.