Sophos XG Firewall - License activation unavailable (error XG-00151). See KB-000043485 for the latest updates.

Sophos xg 125 v18 - creating a rules for POS PCI compliant zone

Thank you community guru's for your help! 

So my POS zone requires only specific sites and ports be allowed best security,  this list for example, of requirements for my CC processing.

Would it be recommended that I create a rule with these specific hosts and IP ranges, or create a custom web policy for this. or both? 

Added TAGs
[edited by: emmosophos at 12:31 AM (GMT -7) on 19 Oct 2021]