Hello everyone
I am currently trying out the firewall rules and have the following problem.
I would like to build the firewall rules so that a return channel is automatically opened for the rule, so that I don’t need 2 rules.
Because I only want to allow traffic in one direction.
I have read that these three options should set this.
set firewall ipv4 forward filter rule 1001 state new
set firewall ipv4 forward filter rule 1001 state established
set firewall ipv4 forward filter rule 1001 state related
Unfortunately this does not work.
Here is the complete config
set firewall ipv4 forward filter default-action drop
set firewall ipv4 forward filter rule 1001 action ‘accept’
set firewall ipv4 forward filter rule 1001 source address ‘10.121.20.200/32’
set firewall ipv4 forward filter rule 1001 destination address ‘192.168.172.1/32’
set firewall ipv4 forward filter rule 1001 log
set firewall ipv4 forward filter rule 1001 state new
set firewall ipv4 forward filter rule 1001 state established
set firewall ipv4 forward filter rule 1001 state related
as soon as i create a 2nd rule and swap the source with the destination ip it works.