Add or edit a Threat Exception

Create exceptions to override the default action configured for Threat Categories for specific threat situations.

1. Click a setting within an existing rule to edit it, or click New to create a new rule.
   Use the More menu beside a rule to add a new rule before or after an existing rule, or to delete the rule.
2. Give the rule a Name, and optionally a Description.
3. Click the Source setting to define the local traffic sources to which the rule will apply. If you do not add a source, the default entry of ANY is used: the rule will apply to traffic from any source to which the policy applies.
   Click the Type or click to select field and begin typing to search for an available resource, or click a resource type to select available resources from a list. Repeat the process to add all required sources for the rule.
   You can click New to define a new resource.
   You can remove a resource from the rule by clicking the Remove button. To reset the source setting, click the Type or click to select field and click Set to ANY.
4. Click the Destination setting to define the traffic destinations to which the rule will apply. If you do not add a destination, the default entry of ANY is used: the rule will apply to traffic to any destination.
   Click the Type or click to select field and begin typing to search for an available resource, or click a resource type to select available resources from a list. Repeat the process to add all required destinations for the rule.
   You can click New to define a new resource.
   You can remove a resource from the rule by clicking the Remove button. To reset the source setting, click the Type or click to select field and click Set to ANY.
5. Click the Situation setting to define the threat situations to which the rule will apply. If you do not add a situation, the default entry of ANY is used: the rule will apply to traffic to any threat situation.
   Click the Type or click to select field and begin typing to search for an available threat situation, or click a threat category to select available sub-categories and situations from a list. To add the entire category, click Select beside the category name. Repeat the process to add all required situations for the rule.
   You can remove a situation or category from the rule by clicking the Remove button. To reset the source setting, click the Type or click to select field and click Set to ANY.
6. Click the Action setting to apply a n action to traffic that matches this rule.

Available actions are:

• Allow and bypass: allows matching traffic and bypasses further policy processing stages. Traffic is not decrypted.
• Block: blocks matching traffic.

7. Click the Logging setting to define whether an entry is added to traffic logs when traffic matches this exception.
   By default, logging is enabled: the service creates a log entry for any traffic that match the exception. Clear the checkbox to disable logging for this exception.
8. When you have finished, click Save.