4 Managing Policies56Secured EFW Device—Allow Traffic versus Block All TrafficWhen an attack is detected as having originated from an EFW device, the attack can bestopped using the Management Console by selecting the appropriate EFW device, andclicking Block All Traffic at the bottom of the NIC information window. This action changesthe security status to Secured-Blocking All Traffic. When everything is functioning normally,click Allow Traffic at the bottom of the NIC information window. This action changes thesecurity status to Secured-Normal. This status indicates the NIC is enforcing the policyassigned to its device set.When you invoke the Blocking All Traffic state for an EFW device, the Policy Server notifiesthe EFW device that all traffic to that NIC has been blocked. The EFW device is temporarilyassigned a policy that prohibits all network traffic other than interaction with the PolicyServer and the DHCP, ARP, and 802.1x protocols.For example, if you notice in the audit log that a particular EFW device has attempted tosniff packets, you may decide to temporarily block traffic to that NIC as a securityprecaution. When you are ready to allow traffic to flow through that EFW device again,simply go back into the EFW device status window and select the Allow Traffic button.Exporting or Importing Policies or Rule SetsYou can export or import existing policies or rule sets to other systems to prevent theinconvenience of re-creating the same policies for different EFW domains.Exporting Policies or Rule SetsTo export one or more policies or rule sets, follow the steps below.1 From the Main menu, select Export Policy/Rule Set. The Export Policy or Rule Setwindow appears.2 Select Policy or Rule Set and click Next.3 Choose the policies or rule sets you want to export and click Next.4 Select the location to which you want the policies or rule sets saved. To specify a path,click Browse and select the desired location.5 Click Next. A summary window appears, showing the policies or rule sets youselected.6 Click Export. A message appears indicating whether the export was successful.7 Click Finish.Importing Policies and Rule SetsTo import one or more policies or rule sets, follow the steps below.1 From the Main menu, select Import Policy/Rule Set. The Import Policy/Rule Setwindow appears.2 Select Policy or Rule Set and click Next.3 Select the file that you want to import. To locate the file, click Browse and navigate tothe desired file.NOTE: An imported policy file must be either a file exported from EFW ordelivered as part of the EFW product. Also, if you select a policy to import, allassociated rule sets are automatically imported, allowing you to resolve conflictswith rule sets already on your system.