OK, now I am confused.
From an external system, I port scanned my ASL box from the outside with FTP and HTTP D/NAT'ed to an internal host. The rule set said to drop everything.
BUT!
FTP and HTTP were open, even though HTTP and FTP would have been blocked by the any-any-any-drop log rule.
What's going on?
Bob
This thread was automatically locked due to age.