Permitting or Blocking Traffic for all Applications in a Category
This section describes how to configure the category default settings. The category default settings are applied to all applications in a category.
1. Click the Edit (pencil) icon in the Configure column for a category.
The Policy Profile - Add/Edit window opens.
2. Specify the category default settings:
• Category: The name of the category.
• Action: Choose Permit to permit traffic, or choose Deny to block traffic. If the action settings vary among the applications in the category, you must first choose the keep application-level settings option, and then configure the action for each application in the category. See Permitting or Blocking Traffic for an Application.
• Logging: Choose Enable to log the event when an application is blocked, or choose Disable to disable the logging feature. If the logging settings vary among the applications in a category, you must first choose the keep application-level settings option, and then configure the logging settings for each application in the category. See Permitting or Blocking Traffic for an Application.
To log application blocking events, you must enable the logging settings for the applications, and then go to the Device Management > Logs pages to configure the log settings and the log facilities. See Log Management, page 374.
– To save application blocking logs to the local syslog daemon, you must enable the Log feature, set the log buffer size and the severity for local logs, and enable the Local Log settings for the Application Control facility.
– To save application blocking logs to the remote syslog server if you have a remote syslog server support, you must enable the Log feature, specify the Remote Log settings, and enable the Remote Log settings for the Application Control facility.
NOTE: Changing
the category default settings will override the application