Functionally related to the implicit auto-lockout rule. Makes sense.
Thanks.
On 8/31/2016 9:49 PM, Jim Pingle wrote:
On 8/31/2016 9:30 PM, Karl Fife wrote:
This suggests the implicit rules are evaluated BEFORE the explicit
rules. Is there a good reason they're evaluated first? I'd expect
On 8/31/2016 9:30 PM, Karl Fife wrote:
> This suggests the implicit rules are evaluated BEFORE the explicit
> rules. Is there a good reason they're evaluated first? I'd expect them
> to be after to allow for debugging, logging, blocking, etc.
>
Yes, that is done on purpose. Otherwise it would
If I understand correctly, the actual interface to which the DHCP
service is bound gets an IMPLICIT (hidden) pass rule.
HOWEVER, I have a log rule defined during DHCP activity. I see the
states, and see the LOGS for the DHCP conversations, (wireshark etc),
but the pass rule is not being hit.