1) I have configured an Untangle to act as a bridge.

2) I am trying to implement a second level firewall - behind a Cisco firewall.

3) I would like to filter network traffic over the bridge.

I thought that it would be a simple case of filtering using the Rack Firewall - but this does not filter ping's (icmp?) - only TCP/UPD. - Is this true ?

Am I correct in thinking that there is another module to filter network packets, and would I use this to apply a "block all" policy ? - Is it built in ?

Any help would be appreciated.

Kind Regards,

it is true that the firewall module only filters TCP/UDP packets. This module is engaged when traffic traverses the UVM. This is to say traffic that passes through Untangle, and not destined for the Untangle specifically. It also is rack specific so if you get the policy manager you have a very large amount of control over who, what, and when, traffic is directed into different racks with independent configurations.

There is also the packet filter, this is filter can control all traffic, destined to Untangle, any protocol, anytime. But it is system wide, and doesn't enjoy the policy manager's input. You can find this in config -> networking -> advanced -> packet filter.