Create, edit or delete a policy route

You can create a policy route to extend your content security policy. Policy routes determine how your policy is applied to your network. For example, in Secure Web Gateway, you might want to prevent all users within your organization from accessing 'Security Risk' sites. In this case, you require a Web policy rout which connects 'Everyone' to 'Security Risk' with the default action, 'Block'.

1. Navigate to Policy > Manage Policy Definition > Web Policy Routes. The Manage Policy Routes page is displayed.

2. Select the Routes tab.

3. Click New. The Add a New Route dialog is displayed, listing the types of policy route.

4. Select Web and click Add. The Modify Policy Route page is displayed.

5. In the Overview panel, click Click here to change these settings. Edit the Name and Notes of the policy route as required, and click Save.

6. In the Traffic panel, click New to define the From and To endpoints. The Add Route Selector dialog is displayed. For the From endpoint, select the user name list(s) or machine list(s). For the To endpoint, select the Internet zones. Click Add.

   The policy route from 'Everyone' to 'Trusted Sites' is used to categorize automatic update servers used by, for example, Microsoft. Disabling this route can cause any automatic updates to fail. It is recommended that you do not disable this route.

   You can use an option in the task panel to create a new user name list, machine list or an Internet zone. If required, you can add multiple route selectors for one endpoint. For example, you can select two machine lists for the From endpoint.

7. In the By Default Perform This Action panel, click Click here to change these settings to configure the default action. Select an action from the drop-down menu and click Save.

   You can also specify a block page to use with the selected action. This block page can be overridden by the user, and a warning page is displayed when the time policy is about to expire.

8. In the Using This Schedule panel, click Click here to change these settings to configure the time policy and click Save.

9. Apply content rules to the policy route. In the Unless One Of These Content Rules Triggers panel, click New to add a content rule.

10. If required, change the order of the content rules. Content rules are prioritized within a policy route and processed according to the order in which they are listed. This means that the order determines which action is performed primarily when a traffic triggers more than one content rule.

    Select the content rule and adjust its order, using and .

11. Apply the configuration.

1. Navigate to Policy > Manage Policy Definition > Web Policy Routes. The Manage Policy Routes page is displayed.

2. Select the Routes tab.

3. Select the policy route you wish to modify and click Edit. The Modify Policy Route page is displayed.

4. Modify the Overview, Traffic, By Default Perform This Action, Using This Schedule and Unless One Of These Content Rules Triggers panels as required. Click Save on each panel to save your changes.

5. Apply the configuration.