I'm trying to better understand the Sophos Top to Bottom philosophy.
I currently have three separate wireless networks. With the exception of QOS, each have similar policies (Scan HTTP, Block Google, Scan FTP, Lan to Wan Default Intrusion Prevention, Application Control (Custom), Traffic Shaping Policy (Custom).
All has been working well. I have a number of hard wired devices on the LAN. They all route through "default network policy" or the "Lan to Wan." This, like the wireless networks, has it's own firewall rules (Intrusion Prevent, Application Control, etc etc).
My question is, since the Wireless Networks, at some point, have to travel through the lan > wan. Are these settings redundant? In other words, is the firewall working double time/scanning twice when really all of the protection setting should just be applied within the Default Network Policy / Lan to WAN firewall rule instead?
This thread was automatically locked due to age.
