i wanna check the malicious file activity on local network (client network)
i created file policy with malware cloud lookup (with both direction) and ips policy for outbound communication (including malware rules.....)
the access control rule like this;
source Local Network -> Dst Any with file policy and oubound ips policy (home_net=local network)
any suggestion writing the reverse rule ?
regards
zafer