On 09/07/2011 07:19 AM, Tonix (Antonio Nati) wrote:
> OUT rules
> Possibility to choose if all rules apply to incoming or outgoing
> If incoming, rules would apply as now. Now, with more interfaces, we
> are forced to write same rules on all interfaces, in order to
> protect services.
> If outgoing, rules would be applied on outgoing interface. This
> would semplify management of more interfaces, because rules would be
> written only once and only on outgoing interface.
> As alternative, mantaining actual incoming rules, it would be nice
> to have one PRE-RULES panel which rules would be applied to any
> interface, before interface local rules.
I see this as a disadvantage, since you no longer have the granular
control. However, I can see your trouble with making the same rule
twice. (Or more) But did you know you can copy a rule to another
interface? You just have to change the interface drop down and source