Hello,
we have 3 networks: intern, dmz and gast.
In the gast-net we will allow our gast to use the internet. Si i have create some rules like:
source: gast-net
service: http
destination: any
Now all gasts can use the http-service in the internet...but i think they can also use the http-port to the intern-net, because ANY is any. That means all Rules i create with the destination ANY, make a hole in my security-policies.
How can i solve this, without closing the gast-net?
Thanks for help.
Skarden
This thread was automatically locked due to age.
