Hello again,
experiences with XG are splitten between "hm k" and "wtf", only view things which seems to be really better.
First thing (opinions are different here), its a shame that you cannot define hosts with IP and MAC in the same object, also the fact that it is only possible to define a "mac host" object with the option "mac list" where you have to enter ALL damn MACs, unsorted, horrible view and editing... why not like "ip hosts", where you can add ip-hosts as a group, same for "mac host group" with adding the "mac hosts"?
OK, now the problem from topic / title: when creating a firewall rule like following, it does not work - nothing can been seen in log viewer:
ALLOW: source zone: wlan2, source network: mac-host-X, destination zone: lan2, destination network: mac-host-Y
source host is dyn ip, destination host has additionally an dhcp reservation (next crappy conifiguration, the dhcp reservations).
The rule only works if I add a separate IP-host-Y to the rule for the host-Y.
OK, rules for firewall and webfilte seems to work when source-hosts are defined as IP-host and/or as mac-host. Right? So some tests suggested that.
Why not in destination?
Is that a "feature" or a bug?
Thx in advice
This thread was automatically locked due to age.
