This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Rule and Policies Order Best Practice

Hello Friends,

I just using Sophos Firewall XG310 SFOS 19.5.3 MR-3. All I know that order/sort of Rule and Policies position is affect to how Firewall Treatment on traffic flow.

Kindly need advice, if I have a set of rule as below pict, what is the best practice to order those rule from top to bottom.

Note: Traffic to Internal Group is a set of Web Server Protection Rule from WAN to DMZ.

Thanks and Regards,


This thread was automatically locked due to age.
Parents Reply
  • Hi,

    there are no specific policy or rule order that you can apply because each site has different requirements.

    My method

    1/. all block rules to the top of the rule list

    2/. high priority traffic next eg VoIP

    3/. High usage rules so that the rule search process does not take much cpu and does not delay the user access

    4/. remainder of traffic based on the number of policies and users.

    I hope this gives you somewhere to start.


    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.