I intended the policy to allow only a single source address to be allowed to access the port but it seems to allow any IP address to establish a session. What am I missing?
policy TEC_Panel {
description "Access to 192.168.0.16/2001";
match {
source-address TEC_Security;
destination-address any;
application TEC_Panel;
}
then {
permit;
log {
session-init;
session-close;
}
}
}
security-zone Internet {
address-book {
address TEC_Security xxx.xxx.xxx.xxx/32;
}