Match rule security considerations?
-
I don't fully understand the concept of match rules. Can match rules interfer with blocking rules or cause a security hazard?
-
@Thisisme
I'm not sure I understand your question, but rules are followed on a first match basis. That is it starts at the top and continues until a match is found. If there is no match, there's an implied deny all at the bottom. So, you put your allows ahead of any rule that would block something you want to get through.
-
I think you got me wrong. I'm talking about floating rules of the type "match". They are e.g. used for the traffic shaper. Can they interfer with other rules in a security related manner? Like: Granting implicit accepts, stop processing of of other deny rules or any other kind of security related problems?
-
This post is deleted! -
????
What does that have to do with rules? Also, these days, most things are encrypted, so what info can be found out?
