Flow: Visualization¶

View the detected traffic flows from Environment: Dev¶

Navigate to Explore > Security Policies > Protect-app-abc to view the detected traffic flows from Environment: Dev

Confirm that Environment: Dev is listed as a source to AppType: app-abc. This can take a few minutes to appear.

Hover over the yellow flow line from Environment: Dev to AppType: app-abc to view the protocol and connection information.

Click the yellow flow line to view a detailed graph of connection attempts.

Add The Detected Flow to The Security Policy¶

Select Update in the top right corner to edit the policy.

Click Next and view the detected traffic flows.

Hover over the Environment: Dev source in the inbound list.

Select the green check box to add this source to the inbound allowed list.

Select OK to Add to Rule

Hover over the blue Environment: Dev source and select the pencil icon to edit the rule.

Select the pencil on AppType: app-abc to define specific ports and protocols.

Currently ICMP is allowed due to the ping detected in the previous task.

Select Save to save the ICMP rule.

Select Next to review the changes to the policy.

Move Policy from Monitoring Mode to Applied Mode¶

Now that the policy is complete, let move it from monitor mode to apply mode.

Select Apply Now to save the policy and move it into apply mode.

Navigate to Explore > Security Policies > Protect-app-abc.

Confirm that Environment: Dev shows in blue as an allowed source.

Attempt to send traffic from another source such as flow-abc-2 to flow-abc-5.

Is this traffic blocked?