EFW Support

Support => General Support => Topic started by: pisisler on Friday 17 February 2023, 01:22:58 am



Title: Icoming router traffic rules doesn't work
Post by: pisisler on Friday 17 February 2023, 01:22:58 am
Hi,

I am creating a new rule to block some IP pools like this;

Source Type: Network/IP
Insert Network/IP: ..0.0/16
Destination: ANY. I also tried Zones -> Green
Service: ANY Protocol: ANY
Policy: DENY

But requests from this IP pool keep coming to the servers behind Endian. How does this really work?


Title: Re: Icoming routed traffic rules doesn't work
Post by: pisisler on Friday 17 February 2023, 03:17:43 am
I could only manage to block requests from an IP pool by making a rule in Port Forwarding / Destination NAT.

Like:

Incoming IP: Uplink ANY
Translate to: A Local IP which takes most of the malicious requests. (Some docs say you can leave this empty but actually it wouldn't allow to be set empty.)
NAT: NAT
Filter Policy: DROP
Access From: Network/IP/Range

Is that really the way it should be set? Then I think I didn't understand the use case of Incoming routed traffic.