Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 3 subscribers
  • Views 3674 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Rule Traffic Volume

Boris60

Hi,

In another product I used to use, an easy way to spot misconfigured FW/NAT rules was to look at the traffic volume that had been processed - 0mb obviously being an immediate flag.

Is there any way I can check the same using UTM 9.3?

Thanks



This thread was automatically locked due to age.
Parents
  • 0

    The first thing that comes to mind is to select logging for the rules, wait a week and then search the Firewall log file for the rules you suspect.  Search for fwrule="62008" for NAT rule #8. For firewall rule 25, search for fwrule="25".

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0

    The first thing that comes to mind is to select logging for the rules, wait a week and then search the Firewall log file for the rules you suspect.  Search for fwrule="62008" for NAT rule #8. For firewall rule 25, search for fwrule="25".

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
Cookie Information Banner