Skip to main content
A
Anonymous_User
Contributor
December 20, 2017
Question

Firewall Rules not working

  • December 20, 2017
  • 1 reply
  • 8305 views

Hi, i have a strange behaviour in firewall rules configuration

I set the Default Action to Deny...then i tried to open only what i desire...but it does not work

The FortiADC blocks all traffic

On the other end if i set the Defualt Action to Allow and then try to block a specifi port it ignores that rule and allow all

traffic

What i'm missing?

Thanks a lot

Giovanni

    1 reply

    A
    Anonymous_UserAuthor
    Contributor
    December 20, 2017

    Hi Giovanni

    My glass ball is in the repair, so you have to give me more information about your config

    Do you have the rules in the right order, deny as last?

     

    regards

    A
    Anonymous_UserAuthor
    Contributor
    December 20, 2017

    Attached my configuration

    Deny as default befault action...and only two permit rules for my lan (LanSupertronic) vs balanced address (ServerAT-PUB) and private address (ServerAT-VIVIANI)...because i don't know if firwall analyze traffic before balance it...

     

     

    Regards

     

     

    boneyard
    boneyard
    Valued Contributor
    May 19, 2018

    Are your virtual servers on port2? or is that a real server network?

     

    if it is virtual servers you need to keep the egress interface empty, see from the admin guide: "Note: If you want to control VS traffic through the firewall, you MUST leave the Egress Interface as default (blank). This allows VS packets to match the firewall rule."

    Terms & ConditionsAccessibility statement