Duplicate Rules

The Duplicate Rules tab lists shadowed and redundant rules with anomalies:

• A Fully Shadowed Rule is one that will never evaluate network traffic because another rule that precedes it over shadows this rule.

• A Fully Redundant Rule is one that is just a part of another larger rule, such that removing this redundant rule does not have an impact on the network traffic, because the traffic evaluation that this rule must perform is already performed by another rule.

You can choose to either disable or delete all the fully shadowed or fully redundant rules.

Note	Expand each observation to see the list of rules that are redundant because of the larger rule. Each rule in the list is displayed with a set of attributes; click the settings button on the top right to select which rule attributes you would like to see along with the rule.

After you disable the shadowed rules, you still get to Undo it before applying the changes. It is recommended that you disable the rules first to measure the impact and delete them, because when you delete them later, they get permanently deleted.

You can enable the disabled rules any time by navigating to the cloud-delivered Firewall Management Center or the On-Prem Firewall Management Center on which the rules are present.