Permissiveness: (high/medium/low) – Indicates how broadly a rule allows network access.
The score is calculated according to the overall scope of the rule, based on the number of IP addresses and services included in the Source, Destination and Service fields.
Low (1-30): Rules with limited scope, typically with specific sources, destinations and services.
Medium (31-40): Rules with a more moderate scope that usually include broader objects or groups.
High (41-100): Very permissive rules with broad network ranges or "Any" objects.
N/A: Indicates that the rule cannot receive a score, usually because it is an unsupported rule type.
Since Rule Viewer looks at the overall scope of the rule, a rule that permits only a limited service such as ICMP, can still receive a high Permissiveness score if it applies to large source or destination networks.
See Rule Viewer Permissiveness Score.