Anyone, (I apologize this is a long read, but I had to explain a few
things) I am writing this as to attempt to figure out what one must do
in order to really apply a 'DENY ALL' inbound rule on the WAN / public
facing side. I have read countless post...
One other item to this local-in-policy where it may not work is I am
able to negate the srcaddr in the other policy, doesnt look like I am
able to use the negate commands on the local-in? This would mean that I
would have to list every country I want...
Ok, Yes, saw the local-in-policy and wasn't quite sure of the FG
implementation of it. So, when I create a local-in policy, can you see
it in the GUI? I created one using the USonly src address, can see it in
the CLI, but not the GUI. Is this one of ...