Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 26 subscribers
  • Views 738 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

firewall policies based on applications

Moonracker

I have 2 wan links

I want to make that policy:

only application youtube go to primary wan1 if fails wan2

rest traffic go to Wan link load balance

 

I make a rule:
rule1:
lan/any -> wan/any application "youtube"

Primary gateway wan1
Backup gateway wan2
application youtube created in application (Application filter criteria -> Smart filter: youtube )

rule2:
lan/any -> wan/any
Primary gateway Wan link load balance

but rule1 mark all traffic not only youtube... what i doing wrong.



This thread was automatically locked due to age.
Parents
  • 0

    It doesn't work that way. The application filter have not anything to do with were the traffic are going. It only block, warn or allow the application based on the signature.

    For this to work, in the first rule, the destination have to be youtube using DNS FQDN name. example *.youtube.com.

     

    But since youtube have multipple FQDN and maybe IP addresses as well, you need to figure them out and add them to the same rule.

     

    //Rickard

Reply
  • 0

    It doesn't work that way. The application filter have not anything to do with were the traffic are going. It only block, warn or allow the application based on the signature.

    For this to work, in the first rule, the destination have to be youtube using DNS FQDN name. example *.youtube.com.

     

    But since youtube have multipple FQDN and maybe IP addresses as well, you need to figure them out and add them to the same rule.

     

    //Rickard

Children