Post by bittwiddler on May 2, 2019 22:09:24 GMT
I have a rule where I block traffic on my DMZ interface to all interfaces but WAN. I am testing it by running the command "ping google.com" from the DMZ network.
I see in the firewall log that the destination for the ping command is listed as "den02s01-in-f14.1e100.net" (a Google server) which should be routed through WAN (my service provider). My destination in the rule is "! WAN address". Am I misunderstanding this rule?
I may run wireshark or fiddler to see what is happening with the rule disabled but I wanted to run it past the smart crowd first to be sure I was not missing anything.
Thoughts?
Proto Source Port Destination Port Description
BLOCK TCP DMZ net * ! WAN address * Block DMZ traffic to all but WAN
PASS TCP DMZ net * WAN address * Permit DMZ to only WAN
I see in the firewall log that the destination for the ping command is listed as "den02s01-in-f14.1e100.net" (a Google server) which should be routed through WAN (my service provider). My destination in the rule is "! WAN address". Am I misunderstanding this rule?
I may run wireshark or fiddler to see what is happening with the rule disabled but I wanted to run it past the smart crowd first to be sure I was not missing anything.
Thoughts?
Proto Source Port Destination Port Description
BLOCK TCP DMZ net * ! WAN address * Block DMZ traffic to all but WAN
PASS TCP DMZ net * WAN address * Permit DMZ to only WAN
