Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 3 replies
  • Subscribers 28 subscribers
  • Views 464 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Any to Any Policy Default

Regex

Hello Fellas.

Im using XG v18 and my thought is: can I edit default policy somehow ? so far SOPHOS reporting/logging section is a total disaster comparing to other vendors like Fortinet Paloalto etc etc WE HOPE THAT ITS GONNA CHANGE IN THE FUTURE, but Can i Log droped traffic from that policy  or can i do anything with it ?;)

thx



This thread was automatically locked due to age.
  • +1

    Hi Roman,

    The default policy is logged under rule 0 which basically means you don't have a matching firewall rule.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0

    Hello Roman,

    Thank you for contacting the Sophos Community!

    You can't edit that Firewall rule, but basically, that rule will be triggered when traffic doesn't match any of your Firewall rules. It is an implied rule. 

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
  • 0

    Hello.

    No you cannot edit the default rule (or catchall rule).

    And the Drop All rule does not log to the firewall log.

    If you want the output, make your own Drop All rule, positioned above that rule and enable logging. Then anything that is Drop All will hit your rule, and you can enable logging in that rule setup.

    But take care, you may find it logging a lot of stuff, and could be a performance issue, so I would recommend the rule being disabled and only enable when you need to trace something.

    Regards

    Regards,

    Gavin Daniels. DipIT(Networking)

     

     
Cookie Information Banner