4. Match rule with dest IP and a !port?

Match rule with dest IP and a !port?

  • M

    Is there a way to define a match rule to have a destination IP and a not port (!80)?  Seems the GUI's "not" checkbox applies to the destination IP and doesn't apply to the port number, or perhaps it applies to both.  Is the only way a 2nd similar rule with a dest any, port 80, and "not" checked, located below the primary rule?

    0
  • LAYER 8 Netgate

    I think this has come up before and no.  Make a port alias not_80 with ranges 1-79 and 81-65535.

    Or you could do what you want to do with port 80 in a rule above what you want to do with everything else.  Just use any port in the second rule)

    0
  • M

    Thanks Deric. Your "1:79, 81:65535" suggestion is what I was looking for.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2019 Rubicon Communications, LLC | Privacy Policy