Hello,
I have the followig issue with my Sophos UTM:
-3 zone declared with 3 VLAN's: LAN, SMART and VIDEO
-rules to deny traffic to each other but have access to internet
-IPS activated
-Objects created with IP and MAC addess
Until 1 week ago, all trafic between SMART->LAN was restricted, but now i see that all traffic that is comming from SMART have access to any network, no matter i added a explicit rule to deny traffic from SMART to ANY or from SMART to explicit IP with any protocol or a single protocol.
I have the latest version updated on the box.
I made a new instalation on another box and i see that the traffic is restricted as it should be, but my old box still do not deny traffic. It seems that is passing firewall rule no matter what object i create.
I can see the traffic on TCPDUMP and also with conntrack, but is not reading the rules with deny traffic.
I see some references in confd REF_PacPacAnyFromSMART2', but i do not have any object SMART2 or any object with 2.
The traffic from LAN on the deny rule is working as it should.
Anybody can help me understand if this is a bug or a hand of a hacker?
This thread was automatically locked due to age.