Firewall > App Rules
660
SonicOS 5.8.1 Administrator Guide
You must enable App Rules to activate the functionality. App Rules is licensed as part of App
Control, which is licensed on www.mysonicwall.com on the Service Management - Associated
Products page under GATEWAY SERVICES. You can view the status of your license at the top
of the Firewall > App Rules page, as shown below.
To enable App Rules and configure the global settings:
Step 1 To enable App Rules, select the Enable App Rules checkbox.
Step 2 To log all policy matches, leave the Global Log Redundancy Filter field set to zero. To enforce
a delay between log entries for matches to the same policy, enter the number of seconds to
delay.
Global log redundancy settings apply to all App Rules
policies. If set to zero, a log entry is
created for each policy match found in passing traffic. Other values specify the minimum
number of seconds between log entries for multiple matches to the same policy. For example,
a log redundancy setting of 10 will log no more than one message every 10 seconds for each policy
match. Log redundancy can also be set on a per-policy basis in the Add/Edit Policy page
where each individual policy configuration has its own log redundancy filter setting that can override
the global log redundancy filter setting.
Configuring an App Rules Policy
When you have created a match object, and optionally, an action or an email address object,
you are ready to create a policy that uses them. For information about configuring these, see
the following sections:
• “Firewall > Match Objects” on page 665
• “Firewall > Action Objects” on page 668
• “Configuring Application Layer Bandwidth Management” on page 669
• “Firewall > Email Address Objects” on page 672
For information about using the App Control Wizard to create a policy, see the “Using the
Application Control Wizard” section on page 663.