I have a big issue I just found out now. If I disable all firewall rules I am still able to surf in the internet or receive mails. Only if I disable the external network in interfaces I am dead so to say.
Strange thing is also if I implement a rule (external interface back on) that says From internal network with service "Web surfing" to any -> block I am still able to surf. This looks like a strange misconfiguration somewhere.
I now implemented a rule Any - Any - Any - Block on top and only activated this one.
I can still surf and get/send mails. Normally everything should be blocked.
As I say disable the external interface, then there is silence.
How can that be?? There is only one cable connection to the modem and this if from the modem into the external interface NIC on the sophos machine.
There are two different subnets
Modem 192.168.0.1 with 192.168.0.200 as "Exposed Host", no DHCP enabled
External NIC 192.168.0.200
Internal NIC 192.168.2.1, internal network 192.168.2.1/24, DHCP enabled
Internal NIC goes into internal switch, all other clients are connected to the switch but the switch has no connection to the modem of course (except through the sophos through the external NIC)
Is there any explanation for this strange behaviour?
Cheers,
Tee
This thread was automatically locked due to age.
