To verify whether there’s a match with the location criteria specified in location aware firewall rule groups, enable debug logging for ENS Firewall and review the
Firewall_Debug.log. Search for an entry for "Number of currently matching locations".
If there are no matching locations, you see the output shown below:
10/25/2017 11:43:16 mfefw(1636.2804) <SYSTEM> blframework.FIREWALL.Activity: Firewall GTI Outgoing Tolerance is set to Do not Block.
10/25/2017 11:43:16 mfefw(1636.3984) <SYSTEM> blframework.FIREWALL.Activity: Alert Display Status is Disabled.
10/25/2017 11:43:16 mfefw(1636.3984) <SYSTEM> blframework.FIREWALL.Activity: Bridged Traffic is Disabled.
10/25/2017 11:43:16 mfefw(1636.2804) <SYSTEM> blframework.FIREWALL.Activity: Unsupported Protocol is Disabled.
10/25/2017 11:43:18 mfefw(1636.2804) <SYSTEM> blframework.FIREWALL.Activity: Number of currently matching locations: 0
If there are matching locations, the output contains the number of matching locations and your location criteria, for example:
10/25/2017 11:43:16 mfefw(1636.2804) <SYSTEM> blframework.FIREWALL.Activity: Firewall GTI Outgoing Tolerance is set to Do not Block.
10/25/2017 11:43:16 mfefw(1636.3984) <SYSTEM> blframework.FIREWALL.Activity: Alert Display Status is Disabled.
10/25/2017 11:43:16 mfefw(1636.3984) <SYSTEM> blframework.FIREWALL.Activity: Bridged Traffic is Disabled.
10/25/2017 11:43:16 mfefw(1636.2804) <SYSTEM> blframework.FIREWALL.Activity: Unsupported Protocol is Disabled.
10/25/2017 11:43:18 mfefw(1636.2804) <SYSTEM> blframework.FIREWALL.Activity: Number of currently matching locations: 1
Name: Inside Network
Number of criterias: 6
Default Gateway: 10.160.1.1
Default Gateway: 10.160.0.1
DNS Server: 10.160.0.1
DNS Server: 8.8.8.8
Domain Reachability: mcafee.com
Domain Reachability: use.cloudshare.com