Hi all,
Just need a bit of advice with UTM9.
I've got your traditional three ... well four networks:
Internal (eth0)
DMZ (eth1)
Wifi (eth2)
Public (eth3)
I've setup MASQ rules to allow Internal, Wifi and DMZ out via the Public interface and NAT rules to allow traffic back onto the DMZ. All good there.
The issue that I have is that traffic can still traverse these networks when I setup packet filter rules such as:
DMZ -> Any Allow
Should I instead config:
DMZ -> Wifi Deny
DMZ -> Internal Deny
DMZ -> Public Allow
On other firewalls I work with (eg. Fortigate), traffic rules are explicitly defined via zone. Hence there is no need to apply a series of deny rules. Can you do this on UTM9? For example:
DMZ (eth1) -> Any (eth3) Allow
TIA
This thread was automatically locked due to age.
