Block traffic is SF is down

Hi all,
Have a SF tunnnel between two site. All traffic from remote have to go through the SF. If SF is down, I would like to block (like a lack hole) all flows.
When SF is up, everything thing os ok but if it goes down, traffic go directly to internet (what Is don’t want)
I tried to create an outbound policy with enforce SF but still doesn’t work?

Is it possible ??
Can you help.

Thx in advance.

V.

This can be done with an outbound policy rule placed on top.
source=any destination=any protocol=any algorithm=enforced

Thx Ron, I did mu config again and now it works … my fault