Hello Marcos,
thank you for your response.
I understand, that you can append further profiles, zones and rules in the following policies.
Please have a look at this example:
- I created two firewall policies.
- The first policy ( Firewall – 10_BASIC) contains two firewall profiles (UNTRUSTED, INTERNAL), zones (Trusted Zone, IT-Administration-Zone) and a basic firewall ruleset. This policy is applied on all machines and replaces all prior settings (therefore set to replace).
- The second policy (Firewall – 1001_Skype) does not contain additional firewall profiles or additional zones. It shall inherit firewall profiles and zones from the first policy and only adds two firewall rules. This policy is applied on all machines where Skype is allowed. It shall allow the usage of Skype only from trusted networks (Firewall profile: INTERNAL)
- Unfortunately and probably “by design” the rule editor in the second policy does not show/know the firewall profiles and zones defined in the first policy (Firewall – 10_BASIC). I can only select “Any profile” in the rule and the IT-Administration-Zone is not available.
Do you have an idea how this is solved?
Thanks again!