This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Reject All Rule?

Hello,
I was under the impression that e rule like this would effectively block all traffic??

Internal NetWork
Any
Any
Reject

Reject Rule.png.png

But as you can see the interfaces keep showing traffic!

Trafic With Reject Rule in Place.png.png

Is the rule incorrect or its something else ??

If the rule is wrong which parameters should I use to prevent all traffic from passing, and it shows no traffic (On the external interface the one showing 1 Mbit with the rule in place)

Thanks

This thread was automatically locked due to age.

Parents

0 Hallowach2 over 13 years ago

Also proxied traffic (http, smtp, ftp, etc.) can generate traffic that is not blocked/logged in the paketfilterlog (it is logged in the specific logfile for the services).

Remember the often mentioned rule of in which order traffic is processed by the asg (DNAT->Proxy->PF).

Up2Date checks/downloads also create traffic. You should be able the see the source of the traffic if you start the flowmonitor (click on the traffic bar of 'all interfaces' or 'internal' or 'external' - that should give you an idea what the souce of the traffic is.

Regards
Manfred
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Hallowach2 over 13 years ago

Also proxied traffic (http, smtp, ftp, etc.) can generate traffic that is not blocked/logged in the paketfilterlog (it is logged in the specific logfile for the services).

Remember the often mentioned rule of in which order traffic is processed by the asg (DNAT->Proxy->PF).

Up2Date checks/downloads also create traffic. You should be able the see the source of the traffic if you start the flowmonitor (click on the traffic bar of 'all interfaces' or 'internal' or 'external' - that should give you an idea what the souce of the traffic is.

Regards
Manfred
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data