I have the following rules applied to my Captive Portal Interface (OPT1):
Proto Source Port Destination Port Description [block]
TCP/UDP PORTAL net * * 135 NetBIOS Block [block]
TCP/UDP PORTAL net * * 137-139 NetBIOS Block [block]
TCP/UDP PORTAL net * * 445 NetBIOS Block [block]
TCP PORTAL net * * 25 SMTP Block [block]
TCP PORTAL net * PORTAL net 80 Web Admin Block [block]
TCP PORTAL net * WAN address 80 WAN subnet HTTP Block [pass]
TCP PORTAL net * 10.2.1.x 80 Allow HTTP to s-20078-0
[pass] * PORTAL net * ! LAN net * PORTAL -> Any
other than LAN
Everything seems to work fine apart from the Web Admin Block rule. This
should be blocking traffic to my Cisco AP (aironet 1100) but I can
access it fine whether I have authenticated on Captive portal or not.
I've tried changing the order of these rules but nothing seems to work.
All the other rules seem to work fine.
Any help would be much appreciated.
25 Store Street South Crescent, London WC1E 7BL, England
Tel +44 (0)20 7323 3300 Fax +44 (0)20 7323 5801
This email contains privileged and confidential information, and is
intended only for the addressee. If you are not the named addressee
you should not disseminate, distribute or copy this email. Please
notify the sender immediately by email if you have received this
email by mistake and please delete it from your system.