Adapt the starter content security policy and build your own

The starter content security policy is designed to provide a template which can be adapted to suit the specific requirements of your organization.

We recommend customizing the starter content security policy as soon as possible. This will help your organization enhance its system performance and reduce potential false positives.

Adapt the starter content security policy

For guidance, you might want to consider the following:

Examine the content rules used in the starter content security policyNavigate to Policy > Manage Policy Definition > Content Rules > Manage Content Rules page to view the currently used content rules indicated with . Alternatively, select a policy route from Policy > Manage Policy Definition > Web Policy Routes > Manage Policy Routes page, and view the content rules used in that route.
Add any unapplied content rules to your policy routes as appropriate
Create separate policy routes for traffic entering or leaving specific departments in your organization

Build your policy step-by-step

Building a content security policy is an iterative process, but the basic steps are:

Define the content rules

See Content rules or Policy References for more information.
Configure your policy routes

See Policy Routes for more information.
Apply the configuration

If you change any configuration or policy settings, you must Apply Configuration for the new settings to take effect. You can do this either from the Changes Made panel, or System > Configuration > Apply Configuration. See Apply new configuration for more information.

If you use Peer Gateways (i.e. when multiple Gateways are peered), any configuration changes from a local Gateway can then be applied to all the peers at the same time. See Configure Peer Gateways for more information.

Copyright © Fortra, LLC and its group of companies.
All trademarks and registered trademarks are the property of their respective owners.