  One of my VLAN rules is not working properly anymore. I am trying to block traffic from one VLAN to another. It is blocking ICMP but it is not blocking HTTP. I am testing against an HP printer. My allow rule for SNMP is allowed & logged properly. Pings are blocked correctly. Access to the printer web GUI should be blocked but it is not.

    Firewall rules attached.

    Any ideas? I've reloaded the filters, reset states and rebooted.

    Running: 2.2.6-RELEASE (amd64)


  • I figured it out. It was the transparent proxy running on that VLAN. The proxy traffic bypasses the rule.


