Request for comment – Starter Use-cases
Do you mean ignore HTTPS traffic? I'd be careful with this one because it's easy to run SFTP over port 443 and send data out of the company. I guess it depends how well your security products can classify traffic.
It's a good start, but I think it needs more detail