Hi, multiple issues here regarding http proxy, reverse proxy and probably smtp proxy also. If you block traffic using packet filter, the same traffic is allowed if the relevant proxy is used. The proxies have taken precedence over packet filter rules previously but I think MAC filtration should be applied to proxy traffic also.
This is specially important in case of reverse proxy. Granted that MAC addresses are really easy to spoof but a novice admin shouldn't get a false sense of security defining a packet filter rule when all the traffic bypasses that rule when a proxy is used.
Screenshot:
1. Block traffic using packet filter
2. Traffic is blocked.
Launch http proxy and the traffic is bypassed.
Regards
Bill
This is specially important in case of reverse proxy. Granted that MAC addresses are really easy to spoof but a novice admin shouldn't get a false sense of security defining a packet filter rule when all the traffic bypasses that rule when a proxy is used.
Screenshot:
1. Block traffic using packet filter
2. Traffic is blocked.
Launch http proxy and the traffic is bypassed.
Regards
Bill