So im very impressed with V17 so far, ive been using it since Beta 1 and the new features are great.
I just wanted to confirm something, I have Syncronized application control setup and working fine. But whats the correct way to use App policies and Web policies, ive not bee quite sure even on V15 & V16.
Do I need to create a seperate firewall rule for use with an application filter and a seperate firewall rule for use with a web filter?? Ive been using one firewall upto now with both a web filter and app filter assigned to it, but i read somewhere on the forums that firewall rules should ideally only have one filter per rule i.e. an app rule or a web rule but not both together. Is this correct or not??
Also if i do setup a seperate firewall rule for an app filter and another for a web filter, which should have higher priority the app filter rule or the web filter rule?
Another thing ive not been sure about is with the app filters i assume that deny is the default and allow is needed for apps to pass? Also If i setup a filter should i add all apps as deny then add apps with allow i want to pass?
Anyway, i love the synced app control its great. glad i have sophos central and xg.
Also ive noticed that my fqdn hosts are not resolving sub domains like before.
JK
