Applies To: Cloud-managed Fireboxes
In a firewall policy for a cloud-managed Firebox, the Advanced policy settings include these settings:
In the Description text box, you can optionally type a policy description.
Idle timeout defines the maximum length of time that a connection can stay active when no traffic is sent through the connection. For information about this policy setting, see Configure a Custom Idle Timeout in a Firewall Policy.
Firewall policies use dynamic NAT to map private IP addresses to public IP addresses. Policy dynamic NAT settings control how the Firebox applies dynamic NAT to traffic handled by the policy. For information about policy dynamic NAT settings, see Configure Dynamic NAT in a Firewall Policy.
Global WAN settings control how the Firebox routes outbound traffic when multiple external networks are configured. The sticky connection setting controls how long a connection continues to use the same WAN interface. To override the global WAN sticky connection setting, you can configure a policy with a custom sticky connection. For information about this policy setting, see Configure Sticky Connection Settings in a Firewall Policy
You can enable notifications if you want the Firebox to send an alert log message or an SNMP trap when traffic matches the policy. For information about how to configure this setting, see Configure Notifications in a Firewall Policy.
To configure advanced settings in a firewall policy:
- Add or edit a policy. For more information, see Configure Firewall Policies in WatchGuard Cloud.
- In the policy configuration, select the Advanced tab.
- Configure the advanced settings.
- To save the policy, click Save.