Gateway Firewall Policies not enforced on certain devices


I found a lot of similar threads but nothing quite specific to what I am experiencing, and I am running out of ideas.

Here is my setup and my issue:

  • Zero Trust WARP clients, all on WARP mode. Devices are mostly iOS, iPadOS and MacOS.
  • 4 users
  • 3 Firewall policies including ad block lists of domains, country restrictions and threat protection

Within the same user, some devices apply all firewall rules and other some but not all.

Here is what I did so far to try to fix it:

  • Re-applied all Firewall policies
  • Re-authorize devices
  • Re-install WARP clients
  • Compared configuration files

Any help would be appreciated.

Hi @arthur3

Are all devices on the same network? Do you know if they are using the Device Profile or are they hitting a different device profile?

Thank you for your answer.

All devices on same network or on cellular with same results.
There is 2 different WARP Device Profiles with 3 devices on each. Within both profiles, some clients get firewall rules and others don’t.
Let’s say I have profile A with device 1, 2 and 3 ; and profile B with device 4, 5 and 6.
Devices 2 and 4 don’t get firewall rules but 1, 3 , 5 and 6 do.
The firewall rule is based on user email, if that can help you find a clue.