Hello, in Sophos XG firewalls, what is the difference between "drop" and "reject"? My understanding is that when you drop it simply and silently drops the packets without any response to the requesting device. "Reject" would on the other hand send a message specifying the reject of the packet request. We were testing dropping traffic via specified country and we noticed that it claimed there was tons of "outgoing" traffic on the rule where we geo blocked. It was about 89 gigs worth which seems remarkably high for having "drop" as the action. Is this somehow sending a message to the client anyway even though we have it set to drop? It isn't sending any sort of "this site is blocked due to policy" web page to them is it?
This thread was automatically locked due to age.
