What is a new feature of the R80.10 Gateway that was not present in R77.X and older versions?

A new feature of the R80.10 Gateway that distinguishes it from previous versions, such as R77.X and earlier, is the introduction of sub-policy inspection. In R80.10, sub-policies allow security rules to be applied in a more detailed and hierarchical manner. This means that if a packet matches conditions in a sub-policy, it can continue to be evaluated against additional rules without dropping off the inspection chain. This enhances the granularity of security policy enforcement and improves the ability to manage complex security requirements by allowing more refined control over traffic management.

The feature of sub-policies provides an essential layer of flexibility and control that enhances the overall functionality of the security architecture, allowing for more complex scenarios to be handled effectively. This capability is a significant advancement over prior versions, which did not support such an integrated, layered approach to security rule management.

Other options, while they reflect functionalities related to firewall rule management and network performance, do not represent new innovations unique to the R80.10 version. The layered rule base, for instance, had been a conceptual approach in earlier versions, even if it was not as clarified or emphasized. Similarly, time objects and specific rate limitations are features that existed in various forms prior to R80.10.