Edit the Default Access Rules

There are two default access rules:

  • Default internet access rule
  • Default private access rule

These rules apply to traffic that does not match any other rule.

Default access rules appear at the bottom of the Access Policy listing page.

Default Internet Access Rule

  • Secure Access applies this rule to traffic to internet destinations that does not match any other internet access rule in the policy.
  • The default internet access rule allows traffic that hits it. You cannot change the rule action.
  • You can edit logging settings.
  • You can edit security control settings.
  • Posture is not applicable for internet access rules.

Default Private Access Rule

  • Secure Access applies this rule to traffic to private destinations that does not match any other private access rule in the policy.
  • The default private access rule blocks traffic that hits it. You cannot change the rule action.
  • You can edit logging settings.
  • Because the action for this rule is Block, security control settings are not needed or offered.
  • Posture is not applicable for the default access rule, because the traffic will be blocked whether or not posture requirements are met.

To View or Edit Default Access Rules

To view or edit a default access rule:

  1. Navigate to Secure > Access Policy.
  2. Scroll to the bottom of the page.
  3. In the Default Access Rules section, click the ellipsis at the far right side of a rule and choose View or Edit.
  4. Make and save your changes.

Edit Rule Defaults and Global Settings < Edit the Default Access Rules > Using Wildcard Masks on Access Rules