What is the Implicit Clean-up Rule?

– by 3

What is the Implicit Clean-up Rule?
A. A setting is defined in the Global Properties for all policies.
B. A setting that is configured per Policy Layer.
C. Another name for the Clean-up Rule.
D. Automatically created when the Clean-up Rule is defined.

Download Printable PDF. VALID exam to help you PASS.

3 thoughts on “What is the Implicit Clean-up Rule?

  1. I say B:

    Layer Properties – Advanced

    Implicit Cleanup Action- The default rule that is applied if none of the rules in the Layer match. Every Layer has its own implicit cleanup rule. You can configure the rule to Accept or Drop in the Layer settings.

    Important – Always add an explicit Cleanup Rule at the end of each Layer, and make sure that its Action is the same as the Action of the Implicit Cleanup Rule. If there is no explicit Cleanup Rule, one of these messages will show under the last rule of the Layer:

    Missing cleanup rule – Unmatched traffic will be dropped and not logged.
    Missing cleanup rule – Unmatched traffic will be accepted and not logged.

    1
    Reply

  2. I also guess its B.

    Reference: https://sc1.checkpoint.com/documents/R80/CP_R80_SecMGMT/html_frameset.htm?topic=documents/R80/CP_R80_SecMGMT/126197
    Implicit cleanup rule
    The default “catch-all” rule that deals with traffic that does not match any explicit or implied rules in the Policy Layers. For R77.30 or earlier versions Security Gateways, the action of the implicit rule depends on the Policy Layer:

    Drop – for the Network Layer
    Accept – for the Application Control Layer

    Note – If you change the default values, the policy installation will fail.

    The implicit rules do not show in the Rule Base.

    ——————————————
    If you remove the default rule, the Implicit Cleanup Rule will be enforced. The Implicit Cleanup Rule is configured in the Policy configuration window and is not visible in the Rule Base table. Make sure the Implicit Cleanup Rule is configured to Drop the unmatched traffic for the Network Policy Layer and to Accept the unmatched traffic for the Application Control Policy Layer.

    3
    Reply

  3. Order in which the rules in each Access Control Policy Layer are applied:

    First Implied Rule – No explicit rules can be placed before it.
    Explicit Rules – These are the rules that you create.
    Before Last Implied Rules – Applied before the last explicit rule.
    Last Explicit Rule – We recommend that you use a Cleanup rule as the last explicit rule.
    Note – If you use the Cleanup rule as the last explicit rule, the Last Implied Rule and the Implicit Cleanup Rule are not enforced.

    Last Implied Rule – Remember that although this rule is applied after all other explicit and implied rules, the Implicit Cleanup Rule is still applied last.
    Implicit Cleanup Rule – The default rule that is applied if none of the rules in the Policy Layer match.

    so the answer may be B

    2
    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *


The reCAPTCHA verification period has expired. Please reload the page.