Create and Edit Access Control Rules

• To add a new rule, click Add Rule.

• To edit an existing rule, click Edit () .

• To edit multiple rules, shift-click a range of rules or control-click multiple rules to edit, then right-click and choose an option.

If View () appears next to a rule instead, the rule belongs to an ancestor policy, or you do not have permission to modify the rule.

If you are bulk-editing multiple rules, only a subset of options are available.

• Enabled—Specify whether the rule is Enabled.

• Position—Specify the rule position; see Access Control Rule Order.

• Action—Choose a rule Action; see Access Control Rule Actions.

• Time Range—(Optional.) For Firewall Threat Defense devices, choose the days and times when the rule is applicable. For details, see Creating Time Range Objects.

• Conditions—Click the corresponding condition you want to add. See Access Control Rule Conditions for more information.

  Note	VLAN tags in access rules only apply to inline sets; they cannot be used in access rules applied to firewall interfaces.

• Deep Inspection—(Optional.) For Allow and Interactive Block rules, click Intrusion policy () or File policy () to configure the rule’s Inspection options. If the option is dimmed, no policy of that type is selected for the rule. See Access Control Overview for more information.

• Content Restriction—Click Safe search () or YouTube EDU () to configure content restriction settings on Applications of the rule editor. If the option are dimmed, content restriction is disabled for the rule. See About Content Restriction for more information.

• Logging—Click Logging () to specify Logging options. If the option is dimmed, connection logging is disabled for the rule.

• Comments—Click the number in the comment column to add Comments. The number indicates how many comments the rule already contains.