I noticed today while doing a port scan that port 443 was exposed on the WAN side but I have no firewall rules with any ports open. It took me a bit to figure this out because I was under the assumption that all firewall rules are displayed on the 'Firewall' page but that doesn't seem to be the case. I eventually figured out it was because 'User Portal' for WAN is checked by default under 'Administration -> Device Access'. So it seems that anything selected on that 'Device Access' is creating a firewall rule in the background to obviously allow access to those services, but they are not displayed on the 'Firewall' page. A couple questions and a suggestion regarding this:
1. Are there any other settings other than the 'Device Access' page that I should be aware of that are creating "hidden" firewall rules?
2. Is there a way to actually display all of the firewall rules through the CLI?
Suggestion: I think it would be beneficial to be able to view ALL firewall rules on the 'Firewall' page. Obviously this would probably lead to more clutter on that page but perhaps an option to view hidden firewall rules or ones that are automatically created by other options in the GUI.
This thread was automatically locked due to age.
