Jump to content

Firewall rules - what I dont understand?


rpnc

Recommended Posts

I have situation who depress me. Maybe someone can help. I try create firewall rule for allowing ping/icmp.

Example:

There is two rules:

- first. working like except. created from LOG. Additional, it work also if I remove application 'System' for full visual similarity; 

- second. don't work, created manually.

1.png.a1e77c9c9343de52e235871ff625ba18.png

BTW You can ignore column Enabled in bottom screen shot. I change it for testing purposes.

Follow i copy screen shots from both rules:

First:

2.png.f6201ab6f56261a95deb23fb40909e98.png3.png.141b044ead617bc6b29e85b621f2bf1e.png4.png.f6a14b66d5400399f553690a24cbd891.png

Second:

5.png.6f22f48ba6ea498346df2c49fb6bc6f4.png6.png.51c66b7b956c17f8844b366b84bcd5a3.png7.png.fe940d1c6eac1efa718783c62d3e71f7.png

 

 

Edited by rpnc
modify attached pictures
Link to comment
Share on other sites

  • ESET Staff

Hello, our firewall evaluates rules in order.

Most probably, you have internal, built-in firewall rules hidden in the editor. Rule from the log is created on the correct place (before the built-in rule), you can also do it manually, but you have to enable visualization of built-in rules, and and place your own rule on the correct place, as they are evaluated in order (top-down).

Link to comment
Share on other sites

  • Administrators

I would also add that ICMP communication is enabled in the Trusted zone by default (you'll see that rule after enabling the display of built-in rules). That said, configuring the Trusted zone properly should allow ICMP without creating new or adjusting existing firewall rules.

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...