Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 28 subscribers
  • Views 3625 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Network

James Nyamu

Hi,

I recently discovered that users in our organisation are accessing the internet and not going through the firewall.

We have an XG firewall in place.

Other users can't access until they go through the firewall.

Funny thing is that I thought it was a VPN installed inside a pc then had to format it but after formatting, the user could still access the internet even before installing the firewall login agent.

This is very annoying and risky.

I need advise, help or suggestions as its leaving our whole network vulnerable.

Thanks, James



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to James Nyamu

    Hi James,

    thank you for providing the details.

    Your firewall rules could do with a little tightening eg restricting the services to the applications allowed.

    Your network does appear to be a security managers nightmare.

    Not sure why you have a rule vpn to lan and another lan to vpn. If the VPN goes to another site and traffic originates locally to that site then fine, if the traffic only originates on the VPN the the return rue is not required.

    Finally your last rule (9) should be a drop or reject, not accept if it is as the name implies.

    Ian

    What is the difference between rules 1 and 3?