Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 3 replies
  • Subscribers 28 subscribers
  • Views 458 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Any to Any Policy Default

Regex

Hello Fellas.

Im using XG v18 and my thought is: can I edit default policy somehow ? so far SOPHOS reporting/logging section is a total disaster comparing to other vendors like Fortinet Paloalto etc etc WE HOPE THAT ITS GONNA CHANGE IN THE FUTURE, but Can i Log droped traffic from that policy  or can i do anything with it ?;)

thx



This thread was automatically locked due to age.
Parents
  • 0

    Hello.

    No you cannot edit the default rule (or catchall rule).

    And the Drop All rule does not log to the firewall log.

    If you want the output, make your own Drop All rule, positioned above that rule and enable logging. Then anything that is Drop All will hit your rule, and you can enable logging in that rule setup.

    But take care, you may find it logging a lot of stuff, and could be a performance issue, so I would recommend the rule being disabled and only enable when you need to trace something.

    Regards

Reply
  • 0

    Hello.

    No you cannot edit the default rule (or catchall rule).

    And the Drop All rule does not log to the firewall log.

    If you want the output, make your own Drop All rule, positioned above that rule and enable logging. Then anything that is Drop All will hit your rule, and you can enable logging in that rule setup.

    But take care, you may find it logging a lot of stuff, and could be a performance issue, so I would recommend the rule being disabled and only enable when you need to trace something.

    Regards

Children
No Data