Rule and Policies Order Best Practice

Question

Hello Friends, 
 I just using Sophos Firewall XG310 SFOS 19.5.3 MR-3. All I know that order/sort of Rule and Policies position is affect to how Firewall Treatment on traffic flow. 
 Kindly need advice, if I have a set of rule as below pict, what is the best practice to order those rule from top to bottom. 
 Note: Traffic to Internal Group is a set of Web Server Protection Rule from WAN to DMZ. 
 
 Thanks and Regards, 
 
 Fandi

rfcat_vk · Accepted Answer

Hi, 
 there are no specific policy or rule order that you can apply because each site has different requirements. 
 My method 
 1/. all block rules to the top of the rule list 
 2/. high priority traffic next eg VoIP 
 3/. High usage rules so that the rule search process does not take much cpu and does not delay the user access 
 4/. remainder of traffic based on the number of policies and users. 
 I hope this gives you somewhere to start. 
 Ian

Raphael Alganes · Answer

Hello Fandi, 
 Thanks for reaching out to Sophos Community. 
 You can configure firewall rules in many ways, depending on your network configuration. However, we recommend you to follow these Sophos Firewall best practices when configuring Sophos Firewall to protect your network. : https://doc.sophos.com/nsg/sophos-firewall/19.5/help/en-us/webhelp/onlinehelp/StartupHelp/RuleBestPractice/index.html 
 Hope this helps. Have a nice day and thank you for choosing Sophos. 
 Cheers,

Rule and Policies Order Best Practice

Top Replies