Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
engineer-a
Participant

Access rule on SMB doesn't work

Hi, guys!

The custmer has faced an issue with Access rule for "File storage and sharing" - it doesn't work at all for group Poligraphy - Rule #1 in access rules, and traffic goes by rule #8 and dropped.

 

But similar rules for other groups and categories work properly (6, 7 rule)

 

SSL Inspection is not enabled, as Regulator Inspection is already in use.

 

Please help me figure out rule 1, what could be the matter?

 

SG-1600

Firmware has been upgraded to the last one.

Screenshots in the attachments.

0 Kudos
3 Replies
Chris_Atkinson
Employee Employee
Employee

How is the source defined and what is an example destination they're attempting to access?

CCSM R77/R80/ELITE
0 Kudos
engineer-a
Participant

Hi Chris,

As shown in screenshot 4, the source is defined as a AD group (by the way, the names and surnames of users in AD are defined in russian, not in latin, so in the logs on screenshot 2 you can see in the User column instead of their names and surnames - questions and strange characters),

And as the destination is indicated "File storage and sharing" category.

 

So the traffic goes through 8th Rule, although must go by 1

0 Kudos
engineer-a
Participant

That is, automatic rule number 8, that drops drops Undesirable applications does not allow making exceptions by adding allowing rules from above (for example, for file storages and not only)

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events