Results 1 to 3 of 3
  1. #1
    Untangle Ninja
    Join Date
    Jan 2009
    Posts
    1,075

    Default Is it by design that the ips doesn't "see" forwarded traffic?

    As the months pass by let me try this yet again.

    This is not a trolling post.

    The intrusion prevention module doesn't log traffic subject to a forward rule, traffic that matches rules marked by default to log.
    This traffic passes through Untangle and is logged in the firewall app, the traffic is also logged by an ips tap between untangle and the server, and the traffic is logged in the web server logs.

    Is this by design?
    Does the ips app fail to process traffic because the traffic is processed by the firewall app?

  2. #2
    Untangle Junkie dmorris's Avatar
    Join Date
    Nov 2006
    Location
    San Carlos, CA
    Posts
    16,341

    Default

    like other apps, intrusion preventions scans sessions that are not bypassed.

    it has no relation to NAT, port forwards, or the configuration of other apps or which other apps are installed.
    Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  3. #3
    Untangle Ninja
    Join Date
    Jan 2009
    Posts
    1,075

    Default

    Well, since the traffic is logged by the firewall app it's obviously not bypassed.

    I guess I'll have to think on this for a few more months.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2