Chapter 7 Firewall for FortiOS 5.0 : Security policies : Firewall policies : Viewing Firewall Policies
  
Viewing Firewall Policies
When you first go into the Policy window, found by going to Policy > Policy > Policy, you will see a table with a menu bar across the top. The menu bar will have the following items:
At the top left
Create New (with a “+” sign on the left and a downward pointing triangle on the right)
Clone
Delete
Column Settings
Filter Settings
At the top right
Section View
Global View
The items at the top right with their radio buttons represent the 2 potential views that the policies can be displayed in.
The Global View shows all of the policies in the order of their sequence. With the default settings you will be able to see the sequence number in a column close to the left side of the table.
The Section view is similar to the Global View except that as the name implies it is divided into sections. By default the sections are based on the paths between the interfaces. These can be referred to as “interface pairings”. For instance, all of the policies referencing traffic from WAN1 to DMZ will be in one section. The policies referencing traffic from DMZ to WAN1 will be in another section.
The sections are collapsible so that you only need to look at the sections with policies you are interested in. It is possible to add customized subsections within the default sections of interface pairings. This would be useful in a situation where you have a lot of policies and would like to further compartmentalize them by common attributes so that things are easier to find.
The default column headings are:
[Check box icon]
Seq.#
Source
Destination
Authentication
Schedule
Service
Action
Log
The column that are shown are configurable. All but the first 2 can be removed or their position changed. There are also a number of other columns that display information about the policies that can be added. One of the more useful ones that can be added is the ID column. The reason for adding this one is that policies are referenced by their ID number for simplicity and ease of administration. If you are looking in the CLI you will see that the only designation for a policy is its number and if you wish to change the order of a policy you will be asked to move it before or after another policy by referencing its number.