Finding a Voice
Cato Professional ServicesHi georgerod,
Got it.
Are you referring to the "Direction" setting in the WAN and LAN Firewall rules?
Here is a link to the KB: https://support.catonetworks.com/hc/en-us/articles/25210910831773-Managing-the-Socket-Next-Gen-LAN-Firewall-Policy#heading-3
For managing traffic coming (inbound) from the Internet, this is referenced in the Remote Port Forwarding (RPF) setting.
Have you come across this KB previously: https://support.catonetworks.com/hc/en-us/articles/360004514358-Security-and-QoS-Recommendations-for-RPF ?
Cheers
Finding a VoiceNegative, not the LAN firewall policy. The INternet Firewall Policy. And also not the Remote Port Forwarding, this is for allowing access to public facing resources.
The Internet Firewall Policy appears to be only from the WAN (inside of network) to the Internet. This KB states the same:
https://support.catonetworks.com/hc/en-us/articles/4413273487633-Managing-the-Internet-Firewall-Policy
Cato Professional ServicesHi georgerod,
It is clearer now.
Just to understand better, as you mentioned "to block for inbound traffic from the Internet?", do you mean the (1) inbound traffic that originates/initiates from the Internet or (2) the response traffic that is inbound from the internet?
Cheers
Finding a Voice(1) inbound traffic that originates/initiates from the Internet
