The Rule Reorder report in Firewall Analyzer Compliance tab suggests reorder of rules for better firewall performance.
When Rule Reorder report is generated, Firewall Analyzer processes all the rules and finds out the unresolved data present in rule source, destination, service, application objects and prompt the user to resolve it.
After resolving all the objects, the user has to update. On update, the resolved data is updated in the rules.
The user can resolve those objects or can skip it. If the user skips the unresolved data, the rules associated with those objects will not taken in to account for reorder process.
No. Firewall Analyzer only recommends to change the order of rules to improve the performance. You have to do the changes in the firewall by yourself.
The policy reorder reports are firewall device specific, so select a particular device. Click the Refresh link to regenerate the reorder report.