Community Record
3
Posts
0
Kudos
0
Solutions
Dec 5 2022
3:25 AM
When a group policy is applied to a VLAN, that policy becomes the new "network default" for any other group policies applied to clients in that VLAN. Since this policy is the new "network default," the client devices will still show a "normal" policy applied under Network-wide > Monitor > Clients. For example, a group policy named "Guest Network" with more restrictive layer 3 firewall rules than the network-wide configuration is applied to the guest VLAN, and a second group policy "Low Bandwidth" has a custom bandwidth limit, but is set to Use network firewall & shaping rules. If the Low Bandwidth group policy is applied to a client on the guest VLAN, the client will use the layer 3 firewall rules configured on the Guest Network group policy, not the network-wide layer 3 firewall rules configured on the Security & SD-WAN > Configure > Firewall page.
... View more
Dec 4 2022
7:00 AM
2 Kudos
There is always a hit when using gp with custom fw rules, because the last rule is allow any any. The gp has 3 options Use the global fw rules Ignore the global fw rules Use custom fw rules
... View more