A Trust Policy allow you to control the outbound connections your instances are permitted to make. By default, all outbound traffic is allowed; when a trust policy is created, all outbound traffic is blocked except for the specific ports, protocols, and Remote IP CIDR defined in the Trust Policy.
Because Trust Policies are at the cloudlet-level, there is no configuration required to enable Trust Policies. You simply enable the Trust option when you create your application, where it will get deployed to the Trusted cloudlet. Keep in mind that restrictions on the outbound traffic will occur, whether you have manually created or auto-provisioned your application instances.
Note: Non-trusted applications cannot be deployed to Trusted cloudlets.
All existing Trust Policies are displayed on the Trust Policy page.