Good point. Limiting it to just global application could be a drawback. Though I suppose the trade-off might be easier management if it's a one-size-fits-all kind of deal. Still, flexibility is always nice.
But wait, don't we also need to consider the global vs. VDOM application? I'm not sure about option B. Wouldn't it be better if the policy-based mode could be applied to individual VDOMs as well?
I agree, A and D sound like the best options. The policy-based mode seems designed to simplify firewall management by integrating more functionality directly into the policies. That could be a real time-saver for administrators.
Hmm, this NGFW policy-based mode question seems a bit tricky. I'm not entirely sure about the specifics, but I'm leaning towards options A and D. The 'no central source NAT policy' and the ability to create applications and web filtering directly in the policy sound like useful features.
upvoted 0 times
...
Log in to Pass4Success
Sign in:
Report Comment
Is the comment made by USERNAME spam or abusive?
Commenting
In order to participate in the comments you need to be logged-in.
You can sign-up or
login
Cassi
24 days agoCandra
25 days agoMozell
26 days agoCandra
6 days agoKarima
7 days agoJonell
8 days agoClorinda
9 days agoPaola
10 days agoHarrison
11 days agoVerona
12 days agoDesmond
27 days ago