UTM profile and policy direction
Freshman Member
@Zyxel_Charlie
after reading this answer i'm confused - does direction (from/to) in policies matters for applying UTM profiles? Let's say we setup IDP rule against RDP bruteforcing and applied it to policy from lan1 to wan, it will be triggered when:
after reading this answer i'm confused - does direction (from/to) in policies matters for applying UTM profiles? Let's say we setup IDP rule against RDP bruteforcing and applied it to policy from lan1 to wan, it will be triggered when:
- someone from lan tries to bruteforce remote RDP
- someone from wan attacks RDP server inside lan1
- or in both of above?
0
All Replies
-
Hi @CB1,
In your example if we create a security policy rule from LAN to WAN and assign an IDP rule to that, it will be triggered only for someone from LAN tries to bruteforce remote RDP (option a).
Security policy rules depends on the initiator of a session.
Thus, if you want better protection for your network you can consider creating rules for each possible directions.
Example;
From any to any (Excluding ZyWALL) assign IDP profile.Moreover, in addition to IDP, other UTM features are recommended in best practice to prevent web threats.
1- Anti-Malware
2- Email Security
3- Reputation Filter
4- Sandboxing
Best regards.0
Zyxel Employee
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 165 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 366 USG FLEX H Series
- 293 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.7K Consumer Product
- 263 Service & License
- 407 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight
