I am trying to find out why traffic is being allowed to a newly created dmz when there are no rules to allow it and there are rules blocking it. All of my rules are specific from one zone to the internet. At the bottom of my rule list is a block any - any - any rule. I am able to ping in both directions and a port scan shows I have full access despite the block. I have verified there are no allow any rules above the drop rule. There is nothing logged when I ping a server in the dmz. What else can I do to enforce the block rule. I have run into this frequently on this firewall where I will set an explicit deny rule and it has no effect. Example is I set one computer to be denied from accessing internet outside of certain hours. It has no effect on access even though it is at the top of the list.
Please help.
This thread was automatically locked due to age.
