Selecting Rules; Editing Rule Order; Using Cut, Copy, And Paste On Rules - Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1 Administration Manual

Selecting Rules

Copyright © 2010, Juniper Networks, Inc.
Because a device can have only one security policy installed at a time, you must include
all rules for that device in one policy.
The Policies navigation tree lists security policies alphabetically. You can create (or
import) an unlimited number of security policies.
Each security policy contains a default firewall rulebase (Zone); you can add other
rulebases (Global, Multicast, IDP, Exempt, Backdoor) to create additional rules.
Each rulebase can contain one or more rules, up to 40,000 max for the security policy.
The top rule in the rulebase is rule 1, and second rule is rule 2, and so on. To combine
rules for easier management within the Zone rulebase, you can create rule groups.
Each rule group can contain one or more rules, up to 40,000 max for the security policy.
Rules within a rule group follow the rulebase numbering sequence.
The IDP, Exempt, or Backdoor rulebases are not included when you:
Merge two policies into a single policy
Import a security policy from an existing IDP-capable security device
You cannot disable an entire security policy or a rulebase. You can, however, disable
individual rules; for details, see "Disabling a Rule" on page 517.
When you reimport a device that was previously managed by NSM, you must manually
reassign a policy to it. For information about reimporting issues, see "Reimporting
Devices and Security Policies" on page 518.
To select a single rule, click anywhere in the rule. The following sections explain these
rule functions:
Editing Rule Order on page 515
Using Cut, Copy, and Paste on Rules on page 515
Using Cut, Copy, and Paste on Rule Fields on page 516
Deleting a Rule on page 517
Disabling a Rule on page 517
Using Rule Groups on page 517

Editing Rule Order

To change the order of rules in a policy, right-click the No. Column (the first column) of
a rule and select Move Rule Up or Move Rule Down.

Using Cut, Copy, and Paste on Rules

To quickly create multiple rules that use the same basic information, copy and paste the
rule, then change the parameters in each copied rule to make the rule unique (this is
especially useful for rules that contain detailed rule options such as attack protection).
Chapter 9: Configuring Security Policies
515