Firewall not dropping by default

  • Hi all,

    I have the following firewall rules on the interface that corresponds to my network:

    As expected I cannot reach or network from,
    but I can telnet to from and any host in .4.0/24.

    I do not understand how this is possilbe as the second and third rule should stop from responding to any requests from these ips.
    Even if these rules were not valid, as I have not specified telnet open for shouldn't the last rule drop the traffic anyway?
    Could anyone help me figure out what I am doing wrong.
    Thanks for the help

  • Traffic destined to hosts on that network isn't filtered by the same ruleset as traffic from those networks. Rules on another interface are passing that.

Log in to reply