SFOS 18.0.3 MR-3 - reject or drop rules stopped working

After upgrading to SFOS 18.0.3 MR-3 our reject or drop rules stopped working for blocking WAN traffic.

I have the following top rule to test which is not working anymore :

Source zone: Any

Source networks and device: WAN_TEST - has my test external IP address

Destination zone: WAN, DMZ2

Destination networks:webdisk_public, DMZ2_webdisk - has the destination IP address 
Action: Reject

Parents Reply
  • The reject/drop rule is forwarding HTTP/s to the proxy module. Which is dropping the traffic. ANY - ANY will have the same issue. 

    The traffic is dropped (blocked by the proxy) but logviewer shows you the allow, as the firewall allows the traffic to the proxy.