Policy-based mode

There is something I don't understand.

I use ESS firewall in the policy-based mode, and I disable every rule I don't use on the list. But I don't see the point of the blocking rules... I mean, the policy based mode is supposed to block everything that I don't have a rule for! Then why having blocking rules?...

The same for the 2 block all unknown inbound and outbound traffic... I disabled them in the policy-based mode and the firewall is still blocking everything as it should...

Thanks for your help

Alex

 

Anyone?...

 

No idea never used policy mode. Why don't you just delete the rules? Do the ask for internet access?

 

Those are "system rules" that can't be deleted. I don't really understand why it is like this, but I do understand how it works.

In policy-based mode, if there is no rule, the communication is denied. But there is general rules that are set to block unknown traffic...

With the rules, in the log, it says : communication denied by rule.

When there's no rule, it says, no usable rule found... but it is still blocked...

 

The ones that can't be deleted are default rules and aren't based via policy. I wouldn't worry about them.

 

You can't delete them but you can disable them.