- Log into your Ray Cloud Controller
- Go to Profiles ---> Click on Policy
Click on +Create Policy
- Select Quota Policy
- Give the policy a Name according to your requirements and select Quota Policy from the drop-down menu.
- Give the policy a Name according to your requirements and select Quota Policy from the drop-down menu.
- Select the Quota Type and Set the Requirements
Set the following fields according to your network requirements.- Time based Quota Policy:
Select Time Quota from the options provided in Quota TypeSet the Time Quota
Enter the Quota Value and choose the option from the given units (Minutes or Hours or Days). - Volume based Quota Policy:
Select Volume Quota from the options provided in Quota Type.Set the Volume Quota
Enter the Quota Value and choose the option from the given units (MB or GB). - Unlimited Quota based Quota Policy:
Select Unlimited Quota from the options provided in Quota Type. Set the Concurrency of the policy according to your requirements. (Only in Unlimited Quota)
- Concurrency in reference to this policy is how many devices can run parallelly on the same credentials.
- Set the Quota Renewal - There are two options of Quota Renewal:
- One Time Renewal - Quota will be renewed only once
- Recurring Renewal - Specify the renewal interval and at what time will it renew.
- One Time Renewal - Quota will be renewed only once
- Set the Validity of the Policy
- Specify for how long will the policy will be valid according to your requirement.
- Specify for how long will the policy will be valid according to your requirement.
- Time based Quota Policy:
- Save the Policy
- Once you have defined the rules, click Save.
2. Creating a Speed Policy
- Go to the Policy tab under Profiles:
- Log into your Ray Cloud Controller.
- Go to Profiles > Click on Policy.
Click on +Create Policy
- Select Speed Policy
- Give the policy a Name according to your requirements and select Time Policy from the drop-down menu.
- Give the policy a Name according to your requirements and select Time Policy from the drop-down menu.
- Set the Requirements
- Select whether you want to apply the policy per user, per group or per network/SSID.
Note:
When you select GROUP, the speed set for upload and download will be divided among all the users in the same group.When you select USER, the speed set for upload and download will be set for each user.
- Set the upload and download speed according to your requirements. The speed specified in the 'from' field (Upload from, download from) will be the lower limit, while the speed specified in the 'to' field will be the upper limit (Upload to Download to).
- Note: Specify the speed in kbps.
- Set the priority according to your requirements.
- Select whether you want to apply the policy per user, per group or per network/SSID.
- Save the Policy
- Once you have defined the rules, click Save.
-------------------------------------------------------------------------------------------------------------------------------------------------------
3. Creating a Time Policy with a Time Limit
- Go to the Policy tab under Profiles:
- Log into your Ray Cloud Controller
- Go to Profile--->Click on Policy
Click on +Create Policy
- Select Time Policy
- Give the policy a Name according to your requirements and select Time Policy from the drop-down menu.
- Set the Requirements
- Select the days on which users will be allowed to access the internet.
- Select Allow or Denydepending on your requirements.
- If you select ALLOW, the device will be allowed to access the network only during that specific time.
- If you select DENY, the device will not be allowed to access the network during that specific time.
- Enter the time in UTC format.
- Save the Policy
- Once you have defined the rules, click Save.
-----------------------------------------------------------------------------------------------------------------------------------------------------
4. Creating a Web Filtering Policy
- Go to the Policy tab under Profiles:
- Log into your Ray Cloud Controller.
- Go to Profiles ---> Click on Policy.
Click on +Create Policy
- Select Web Filtering Policy:
- Give the policy a Name according to your requirements and select Web Filtering Policy from the drop-down menu.
- Give the policy a Name according to your requirements and select Web Filtering Policy from the drop-down menu.
- Setup the Rules for Web Filtering:
- Select whether you want to Allow the selected categories or deny the selected categories to run on your network.
Select the categories you want to filter out, example: Arts, Banking, Business, etc.
Select the additional security features you want the policy to have to be implemented on your network. They include
- Anti Malware
- Anti Phishing
- Anti-Spam
To allow specific domains, you can add the domain names under the whitelist tab
- Select whether you want to Allow the selected categories or deny the selected categories to run on your network.
To further filter out specific domains, you can add the domain names under the blacklist tab.
- Once you have made the Web Filtering Policy according to your requirements, click Save.
------------------------------------------------------------------------------------------------------------------------------------------
5. Creating an Application Filtering Policy
- Log into the Ray Cloud Controller.
- Go to Profiles ---> Click on Policy.
Click on +Create Policy
2. Select Application Filtering Policy:
- Give a Name to the policy according to your requirements and find Applications Filtering Policy under definitions.
3. Define the applications to allow or block:
- You will be presented with a list of applications or options to define filtering rules.
- Allow: Specify the applications that users or devices on your network can access. For each application, provide the relevant name, category, or domain.
- Block: Define the applications that should be blocked or restricted on your network. You can add specific applications or categories of apps to the block list.
Note:
Only the allowed application will be permitted to run on the network, while the remaining applications will be Blacklisted.
- Select all the Applications you want to filter out from the network from the drop-down list.
- For applications that are not present in the list, add them under the tab BYOP- Bring Your Own Application.
- In case some applications have additional domains, you can add them under Domain(s) for Existing Applications.
- You can add multiple domains at once. Alternatively, you can add multiple applications and their associated domains by clicking the plus sign located on the right-hand side of the tab.
3. Save the policy:
- After defining the allowed or blocked applications, click the Save button to save the policy.
6. Creating a Custom Applications Policy
- Go to the Policy tab under Profiles:
- Log into your Ray Cloud Controller.
- Go to Profiles ---> Click on Policy.
Click on +Create Policy
- Select Custom Applications Policy:
- Give the policy a Name according to your requirements and select Custom Applications Policy from the drop-down menu.
- Give the policy a Name according to your requirements and select Custom Applications Policy from the drop-down menu.
- Set Outbound Rules:
- Enter the list of IP addresses or domains you want to allow or deny.
Note:
When entering multiple IP addresses or domains make sure to separate them with commas (,). - Select the Common Services according to your requirements. The default option of Common Services is Custom.
- Select Protocols according to your network requirements. The default option of Protocols is All Traffic.
- Enter the list of IP addresses or domains you want to allow or deny.
- Save the Policy:
- Click Save to save this custom policy.
7. Creating a Clean Internet Policy
Go to the Policy Tab under Profiles:- Log into your Ray Cloud Controller
- Go to Profiles ---> Click on Profile
Click on +Create Policy
- Give a Name to the policy according to your requirements and choose Clean (DNS Filter) Policy from the list of available policies.
- A DNS filtering policy (basic) refers to a set of rules implemented at the Domain Name System (DNS) level to control and manage access to specific websites or internet resources. This policy typically focuses on ensuring basic internet safety and optimizing network use.
- Under DNS Server, there are two options
- Ray DNS – When choosing Ray DNS filtering, it provides three levels of filtering.
L1 filter- Blocks phishing, spam and malicious content
L2 filter- L1 filter+ Pornographic & obscene content
L3 filter- L1+L2+ Includes Safe browsing, Restricted Mode and VPNs
- Custom – For Custom DNS filtering, enter the IP address of the DNS servers you want to filter out.
Select the filtering options according to your network requirements.
- Ray DNS – When choosing Ray DNS filtering, it provides three levels of filtering.
- Click Save to save the policy.
----------------------------------------------------------------------------------------------------------------------------------------
8. Creating an Internal Network Firewall Policy
- Go to the Policy tab under Profiles:
- Log into your Ray Cloud Controller
- Go to Profiles--->Click on Policy
Click on +Create Policy
- Select Quota Policy
- Give the policy a Name according to your requirements and select Internal Network Firewall Policy from the drop-down menu.
- Give the policy a Name according to your requirements and select Internal Network Firewall Policy from the drop-down menu.
- Set the Requirements
- Select whether you want to allow default internet network policy.
Note:
If you deny the default internet network policy, it will block all the domains present on the Internet. - Enter the IP address or the Domain Name of the website you want to allow or deny in your network. Select which common services and protocols you want to block.
- To add multiple domains, click on the "+" (plus sign) icon on the right-hand side of the tab.
- Select whether you want to allow default internet network policy.
- Save the Policy:
- Click Save to save this custom policy.
--------------------------------------------------------------------------------------------------------------
9. Creating an Intrusion Prevention Policy
Go to the Policy tab under Profiles:
- Log into your Ray Cloud Controller
- Go to Profiles---> Click to Policy
Click to +Create Policy
Select Intrusion Prevention Policy:
- Give the policy a Name according to your requirements and select Intrusion Prevention Policy from the drop-down menu.
- Give the policy a Name according to your requirements and select Intrusion Prevention Policy from the drop-down menu.
Set the Requirements:
- Select the Traffic Rule:
- Select Alert if you want to generate an alert if there was an attack.
- Select Drop if you do not want any alerts whether there was an attack it will block all unwanted traffics and attacks.
Note:
In IDP/IPS each packet is assessed for threats, thus it takes more time to process, which leads to slower Internet speed. The speed of the internet goes down by approximately 40%.
- Set Bypass:
- Enter any domain name you want the policy to bypass.
- IF you have made any Application Filtering Policy and if you want them to bypass the rules, add them here. The policies will appear in the drop-down menu.
- IF you have made any Custom Application Filtering Policy and if you want them to bypass the rules, add them here. The policies will appear in the drop-down menu.
- Select the Traffic Rule:
- Save the Policy
- Once you have defined the rules, click Save.
- Once you have defined the rules, click Save.