Which rule will be applied first if priorities are the same?

When multiple rules have the same priority in a security configuration, the system will typically apply the rule that is defined as the "Bypass" first. This is because the Bypass rule allows the specified traffic to pass through without any further inspection or control, which serves as a means to allow certain traffic to avoid all processing for efficiency or performance reasons.

In many security systems, Bypass rules are designed to ensure that critical applications or traffic that must not be hindered by other security checks are processed immediately, regardless of other rules at the same priority level. This ensures business continuity and optimal performance for essential services, as these rules take precedence over others that may apply additional constraints or logging.

While other types of rules such as Force Allow, Log Only, and Deny also serve important functions in managing security policy, they do not take priority over the Bypass rule when priorities are equal. Force Allow explicitly allows traffic; Log Only would just log the instance for future reference without taking action; Deny, conversely, blocks traffic. However, when the rules have identical priorities, the need to bypass certain checks for operational efficiency results in the Bypass rule being applied first.