SRM Firewall order and deny

Currently reading
SRM Firewall order and deny

Yes.
LAN can connect to camera VLAN (especially my nas for recording).
TV to plex.
Then deny inbound internet to lan.
And yes. Lan can access to internet with outbound traffic. With this rule my tv can access to netflix without issue for example.
It is not normal?
 
I guess that’s why I have my own deny rules at the end of my firewall policy… you can’t trust the default behaviour to be what you want. There are explicit WAN inbound rules at the end that you can change but there would seem to be hidden rules that allow the LANs outbound to WAN, and you can’t change these unless you add extra rules yourself. That’s why I have my own deny all rules at the end of my policy. But you’ll have to manage port forwarding rules in the firewall policy yourself too.
 

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Old thread notice: There have been no replies in this thread for quite some time. The last reply was on .
The content in this thread may no longer be relevant. It might be better to open a new thread instead.

Similar threads

  • Question
OOOps running SRM 1.3.1 Update 6
Replies
1
Views
788
Sorry I have no connections to that topic.
Replies
12
Views
5,993
That is also me, enabling firewall rules does block the tunnel you can see it in the logs. As soon as syno...
Replies
2
Views
425
You are right. I think I'm getting this error because I can't allow cloudflared.
Replies
2
Views
1,080
All 3 NAS's are set that way.... FIREWALL AND NOTIFICATIONS ARE CHECKED I have in the past seen and...
Replies
2
Views
948
  • Question
Generically you would. 1. Allow specific IPs/Ports from your local LAN 2. Allow specific IP/Port for VPN...
Replies
5
Views
4,573
QuickConnect Relay uses a client connection created from the NAS outbound to the Synology servers. This...
Replies
2
Views
3,367

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Back
Top