I'm setting up the "essential" firewall edition for use at a small school. To keep things simple and clear for the volunteer "IT" staff there, I created an explicit drop rule at the bottom of the firewall ruleset matching on any:any:any>drop and log. I know the explicit rule is not necessary, and is redundant because of the implied default drop, but wanted to put it in the ACL so that it was visible to the staff there.
I noticed, however, that my drop rule never fires and traffic is still dropped by the "Default DROP" rule in the logs. I was expecting to see drops in the log start named "packet filter rule #8", and not see any more hits on the "Default DROP", but I see the exact opposite. I've confirmed the same behavior occurs with my UTM at home if I replicate the same explicit rule there as well.
My question: why does it appear that my explicit drop rule is being ignored in favor of the implied drop? Is that what is actually happening?
This thread was automatically locked due to age.
