Global Policies



  • Hi Guys,

    I have been reading that policies are evaluated

    • interzone

    • intrazone

    • global

    • implicit

    So I was playing around with this and created the rule trust global any any deny log.

    If I do a ping from my trust zone to my dmz zone the global rule doesn’t pick up the traffic in the logs. It appears to be hitting the implicit deny rule.

    There are no other deny rules in the trust to dmz area.

    Any ideas as to why this isn’t working?



  • Read the top sticky article: How the Global zone works……

    /O


 

33
Online

38.4k
Users

12.7k
Topics

44.5k
Posts