This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Packet Filter Blocking Question

All-

I have created a group CIDR-BlockList and added several networks to the group. Individually those networks ard comprised of both IP address ranges and CIDR's (173.194.55.0/24). The group is placed in a packet filter rule in position #1. The rule is Any> Any> CIDR-BlockList> drop. Http traffic is blocked in Web Filtering> Advanced> Skip Transparent Mode Source Host Nets, and Skip Transparent Mode Destination Hosts Nets. The CIDR-BlockList group is added in both host and destination locations.The check box Allow Http/s traffic for listed hosts/nets is unchecked. It appears all Http traffic is blocked. However the packet filter rule is not working. I can ping and tracert with no issue. How can I force all traffic in the CIDR-BlockList to be blocked? I must have missed something..... now pulling out hair....

Thanks,
Jim

This thread was automatically locked due to age.

Parents

0 BarryG over 12 years ago

Hi,
Ping and Traceroute are allowed to all destinations if you have them set on the Firewall->ICMP Tab.

If you need, you can disable those settings, and manually create your own ICMP packetfilter rules.

Barry
Cancel
Vote Up 0 Vote Down

Cancel
0 scottj_01 over 12 years ago in reply to BarryG

Barry,

Thank you, I knew I missed something. Based on that information am I correct that I would no longer need the also block in the web proxy advanced tab the packet filter would be enough?

Thanks,
Jim
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 scottj_01 over 12 years ago in reply to BarryG

Barry,

Thank you, I knew I missed something. Based on that information am I correct that I would no longer need the also block in the web proxy advanced tab the packet filter would be enough?

Thanks,
Jim
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data