Scheduled Maintenance Rule
-
I have a NAT rule pointing to a web server.
Our Dev team wants a 3 hour maintenance window where no Internet users can hit the site.
The scheduler seems to work opposite to this, it schedules when a rule is active.What is the suggested method to achieve a block of this service for scheduled maintenance? A scheduled block rule that follows the allow rule? (seems a bit counter intuitive)
-
The scheduler seems to work opposite to this, it schedules when a rule is active.
Uhm, and the problem with that is exactly what? Schedule when the NAT is active (i.e., all times outside of maintenance.)
A scheduled block rule that follows the allow rule? (seems a bit counter intuitive)
Rules are top down, first match. You have it reversed.
-
Uhm, and the problem with that is exactly what? Schedule when the NAT is active (i.e., all times outside of maintenance.)
Nothing wrong with it, my first time trying to schedule rules, so just looking for some help. It just works opposite of what I thought.
Rules are top down, first match. You have it reversed.
Thanks. You're correct, I misspoke.
The scheduler set up presents a single month as the default interface, so I thought I'd be able to click on the day, pick the hours and say 'disable this rule'. The documentation is a bit sketchy on scheduling rules that match what I'm looking for so I thought I'd ask the community.
I'll create a block rule and test. Thanks for your help.
-
I'd frankly start with the allow rule scheduling, results with scheduling block rules are not exactly convincing for some people due to dangling states.