This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Default drop although last rule is "reject any any any"

Title says it all:
Although I have a rule "reject from any to any using any service" at the bottom, I still see "DEFAULT DROP" entries in the live firewall log. Why is that?
UTM 9 Essential edition, so no IDS or Threat detection or whatever active.

This thread was automatically locked due to age.

Parents

0 Scott_Klassen over 11 years ago

Just curious now: Does anybody know the reason for that design decision?
It would be pure speculation on the part of anyone trying to answer this, as this is a user to user forum. Even were that not the case, there's no one left from the early design days.

__________________
ACE v8/SCA v9.3

...still have a v5 install disk in a box somewhere.

http://xkcd.com
http://www.tedgoff.com/mb
http://www.projectcartoon.com/cartoon/1
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Scott_Klassen over 11 years ago

Just curious now: Does anybody know the reason for that design decision?
It would be pure speculation on the part of anyone trying to answer this, as this is a user to user forum. Even were that not the case, there's no one left from the early design days.

__________________
ACE v8/SCA v9.3

...still have a v5 install disk in a box somewhere.

http://xkcd.com
http://www.tedgoff.com/mb
http://www.projectcartoon.com/cartoon/1
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 BrucekConvergent over 11 years ago in reply to Scott_Klassen

It has been that way forever -- and I can think of one reason (though it might not be the right one). Given folks' proclivity to use "ANY" well, Anywhere ... the actual interfaces may be excluded to prevent one from killing access to services on the UTM accidentally with a broad brush-stroke "ANY" rule.

We don't use "ANY" very often at all in the secure configurations we provide customers, but I've gone behind plenty of admins that used ANY for everything under the sun.

CTO, Convergent Information Security Solutions, LLC

https://www.convergesecurity.com

Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries. Use the advice given at your own risk.
Cancel
Vote Up 0 Vote Down

Cancel