Athena SWG (Secure Web Gateway)

Athena SWG (formerly Internet Access Gateway) ensures visibility and control across the network, detecting risks like unauthorized access, non-compliant activities, and data leaks to manage endpoints.
{{ $t('productDocDetail.guideClickSwitch') }}
{{ $t('productDocDetail.know') }}
{{ $t('productDocDetail.dontRemind') }}
13.0.120
Athena SWG (Secure Web Gateway) {{ breadTitle }} User Manual Functions Online Activities Access Control Matching Network Access Policies
{{sendMatomoQuery("Athena SWG (Secure Web Gateway)","Matching Network Access Policies")}}

Matching Network Access Policies

{{ $t('productDocDetail.updateTime') }}: 2025-12-29

If a user or user group is associated with multiple policies, the policies are matched in a particular order. Overlay policies are matched from the top down. For non-overlay policies, only the first valid policy is matched.

Overlay policies include Access Control, port control, web keyword filtering, web file type filtering, QQ number whitelist, flow quota, Internet access online duration quota, traffic rate limit, concurrent connection limit, Ingress policies, and application audit. The following figure shows the matching sequence of Internet access permission policies. P3219#y1

Other overlay policies are matched from the top down.

Non-overlay policies include proxy control, SSL content identification, mail filtering, Flow/Online Duration, webpage content audit, Bulletin Board, and online endpoints. The first valid non-overlay policy prevails.

If the sequence of policies in the Policies is adjusted, the policy sequence on the page displayed after you choose Users > Policies is changed accordingly.