3CX DLL-Sideloading attack: What you need to know

SD-WAN and Normal Firewall Rules

XG86 Firewall v19.0MR1
TLDR: When i enable SD-Wan for a certain zone to use differente Gateway all other rules on that zone is ignored

I have 2 Zone and 2 Wan.
First LAN zone use ISP1 and ISP2 as a backup
For the Second Zone i need ISP2 default and ISP1 as backup...
On v17 this work perfectly
On v18 and v19 work because transformerd my old rule automatically on "migrated rule on sdwan tab"
The problem begin when i deleted this "migrated sdwan rule" and recreated normal one.

Maybe i dont understand something maybe not... but in this way the WAN work but all the rules for the second Zone is completely ignored
One rule permit Zone2 to reach an IP in Zone1... disabled the new SD-WAN rule and this work :/

Some help??



Added v19.0 MR1 TAG
[edited by: Erick Jan at 2:01 AM (GMT -8) on 3 Feb 2023]
Parents Reply
  • So as I understand you have 2 Zones: LAN and WiFi zone, both defined as LAN Type. Then you have SD WAN policy defined for the WiFi Zone to be routed through WAN Gateways with GWEolo as primary link and GWTim as secondary link and both are marked as Active in the WAN Link Manager.

    The issue statement as I understand is that the traffic is routed using the SDWAN rule logic, while as per Firewall Rules defined, it should get blocked.

    Please confirm if the understanding is correct.

Children