Does your policy have any disabled rules? If you do, that could be the explanation. If you have a disabled rule, it shows up in the rule base # in the GUI editor, but not to the enforcement module, so the log viewer will report the "wrong" rule number to you.
HTH, alex -----Original Message----- From: liu [mailto:[EMAIL PROTECTED]] Sent: Thursday, February 21, 2002 10:50 PM To: [EMAIL PROTECTED] Subject: [FW-1] the drop action in log Hi Everyone I have just set up a firewall and leave the default rule "any,any,any,drop" no tracks. When I check the log, I found some rules without any tracks(nothing) have been written into log with "drop" action. Why? ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
