We run bm39sp1 with access rules at organization container. There is enabled "enforce access rules" at BM server.

Also, we have some hosts, who need download some information from internet. There is no ability to install NWclient and clntrust on its.

For these hots, we make access rule type port, source ip address, destination ip - any, origin server port any, and up this rule to 1-st position.

And these host can't download any from internet, because BM enforce it to authenticate. (we try browse web)

Idea was what authentication happen when bm have no user information about source, but we specify source ip address instead nds source (user, group, or container).

What's wrong?