I'm working on a Barracuda WAF and I have to route a company's traffic. I'm looking at the previous configuration, which was made poorly and a question came into my mind which I couldn't figure out the answer.
If in "NETWORKS>Interfaces>Service Virtual Interfaces"an IP (for example 10.1.0.230 (255.255.255.255)) in being configured under a LAN network interface and if the exact IP address is there in "BASIC>Services>Services" and it's under a Service group under "default" Vsite and this time with WAN as interface, how are the rules work here?! I mean I don't understand the priority for forcing the policies here.
(Another thing that might be helpful to add, is that in "NETWORKS>Routes>Interface Routes", under "system" network group 10.1.0.0( 255.255.0.0) is being configured as a LAN network interface). In other words, Vsites and System are two network groups defined in WAN and routing configuration can be made in both. And from what I see, some conflict-of-interest policies can be made in these two. Which ones are prioritized and why? Can you kindly help me out here please?