Network > Network Profiles > Interface Mgmt
It is used to control what protocols are allowed on interface.
![](https://static.wixstatic.com/media/19e2a1_7d95d6b305b54d96870ef94fca577f07~mv2.png/v1/fill/w_63,h_52,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/19e2a1_7d95d6b305b54d96870ef94fca577f07~mv2.png)
Now Go to Interface --> Advance and apply this management profile.
![](https://static.wixstatic.com/media/19e2a1_bd1d4d727dda461c83b5244e50d6fca0~mv2.png/v1/fill/w_74,h_49,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/19e2a1_bd1d4d727dda461c83b5244e50d6fca0~mv2.png)
Note : Security Policies Still need to allow traffic to firewall interfaces from Source.
Keep in mind intrazone traffic is by default allow.
Capative Portal
Step 1 : Create Certificate Profile
Device --> Certificate Management --> Certificate Profile
![](https://static.wixstatic.com/media/19e2a1_dab4b813caf64893ae2731c56ccf1970~mv2.png/v1/fill/w_49,h_20,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/19e2a1_dab4b813caf64893ae2731c56ccf1970~mv2.png)
The Zone must have user identification enabled. e.g. Guest Zone and in that case Guest Zone interface ip will be ip where PA redirect user to put credentials.
![](https://static.wixstatic.com/media/19e2a1_deb5499496414a7c969945870da120b4~mv2.png/v1/fill/w_74,h_56,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/19e2a1_deb5499496414a7c969945870da120b4~mv2.png)
Step 2 : Device --> User Identification --> Capative Portal Settings
![](https://static.wixstatic.com/media/19e2a1_90dbe53bbd1b48e6bd5a649252c6bfbb~mv2.png/v1/fill/w_49,h_19,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/19e2a1_90dbe53bbd1b48e6bd5a649252c6bfbb~mv2.png)
Now add Authentication Profile & give ip of Fw which will serve Capative Portal Web page
![](https://static.wixstatic.com/media/19e2a1_9d8df7d88ae44ae2ba872555c47c497a~mv2.png/v1/fill/w_49,h_29,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/19e2a1_9d8df7d88ae44ae2ba872555c47c497a~mv2.png)
Step 3 : Set Responsive Page on interface management profile which is going to server capative portal page.
![](https://static.wixstatic.com/media/19e2a1_b91a23dea9e941d69d303b87761cb702~mv2.png/v1/fill/w_49,h_28,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/19e2a1_b91a23dea9e941d69d303b87761cb702~mv2.png)
File Blocking
Object --> Security Profile --> File Blocking
![](https://static.wixstatic.com/media/19e2a1_580f2c8030a34f64bb8d236e76a11e25~mv2.png/v1/fill/w_49,h_15,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/19e2a1_580f2c8030a34f64bb8d236e76a11e25~mv2.png)
Now attach it to Security Policy in Rule.
![](https://static.wixstatic.com/media/19e2a1_16c190fbc1334228b4a82fb3c2f0e321~mv2.png/v1/fill/w_49,h_29,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/19e2a1_16c190fbc1334228b4a82fb3c2f0e321~mv2.png)