i find that the order of rules affect behavior.
for example, here are two policies, the same set of rules but in different order.
based on testing, seems if there are multiple rules with the same source, in this case en08, the last rule is used.
for a given source, there can only be one source and thus the need to use multiple destinations?
thanks, yes, since i posted, i have realized that the brackets are missing.
my concern is that might be valid json, but not a valid ts policy.
ts accepts acls policy using formatting used for hosts
ts should complain about that and refuse to save the policy.