Hello! I use XG in gateway mode. Create rules (and IPS) for incoming connections - forwarding to my local services - all OK.
Create rule (and IPS) for outcoming conneections with NAT (forwarding from lan to internet) - and it looks like asked traffic (established, related in forward chain) also accepted with this rule.
So it seems that established/related traffic not filtered with IPS rules - packets with enabled IPS patterns (included and created by me) goes through (and I able to catch it with Wireshark).
Is it possible to filter that traffic with IPS rules? Or I just missing something in manuals (any additional rules should be created).
This thread was automatically locked due to age.