Hello, glad Scott pointed that out, when a FW1 is installed, with no rules, it still has rules that are there even if you don't see them. It has the 'implied drop rule'. That rule drops everything without logging it. When you add a 'from any to any anything -> drop and log' rule, you do it for the logging, all the rest is allready there. And that's for both outgoing and incoming.
In your logfiles you might see an entry being dropped by a rule that's not in your rulebase, (eg 0) This could be the drop rule, but it can also be anti-spoofing, you don't make rules for anti-spoofing, but you configure it in the GUI. The rules are added, but you don't see them. Joost PS: If I recall correctly, you can select somewhere to see the implied rules anyway (view -> something) -----Original Message----- From: Vachon, Scott [mailto:[EMAIL PROTECTED]] Sent: donderdag 10 januari 2002 18:23 To: [EMAIL PROTECTED] Subject: RE: PIX with no rules >Correct me if I'm wrong but FW1 with NO rules defined (when installing the FW), >allows all traffic to pass... Consider yourself corrected. You are wrong. Rule zero on FW1. ~S~ My own 2 cents. ********************************************************************** The information in this mail is confidential and is intended solely for the addressee(s). Access to this email by anyone else is unauthorised. If you are not an intended recipient, you must not read, use or disseminate the information contained in the email. **********************************************************************