Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 2 subscribers
  • Views 1544 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Packet Filter issues

chuckie_mn
I am trying to drop some ip's from accessing our web servers behind the firewall. I have added them to drop. But no matter what I set the packet filter to it wont drop any of the ip listed.

I am using Astaro ASG 7.201 on a Sun Sunfire 4100.


This thread was automatically locked due to age.
Parents
  • 0
    It sounds like you have NAT rules to forward traffic to the servers, the NAT rules are applied before the PF rules.  You can add a DNAT rule to redirect the problem hosts to an invalid IP before the valid DNAT rule.
Reply
  • 0
    It sounds like you have NAT rules to forward traffic to the servers, the NAT rules are applied before the PF rules.  You can add a DNAT rule to redirect the problem hosts to an invalid IP before the valid DNAT rule.
Children