IDP block VPN access
Hello, can anybody help me and explain best fix solution ?
After upgrade USG110 to FW4.65/or update IDP to 3.2.4.268, computer from our LAN
On router :
warn,idp,ACCESS BLOCK,lan1,wan1,tcp,Rule_id=20 SSI=N [type=Sig(1139379)] EXPLOIT PPTP Echo Request Buffer Overflow (CVE-2003-0213) Action: Reject Both Severity: high
https://threatintelligence.zyxel.com/idp
Ii this false detection ? Or is safe Disable this item from IDP ?
What i can do (create exception) ?
Thanks for help !
After upgrade USG110 to FW4.65/or update IDP to 3.2.4.268, computer from our LAN
cannot join to external VPN, using VPN from Windows 10 (before two weeks is connected OK).
warn,idp,ACCESS BLOCK,lan1,wan1,tcp,Rule_id=20 SSI=N [type=Sig(1139379)] EXPLOIT PPTP Echo Request Buffer Overflow (CVE-2003-0213) Action: Reject Both Severity: high
https://threatintelligence.zyxel.com/idp
Ii this false detection ? Or is safe Disable this item from IDP ?
What i can do (create exception) ?
Thanks for help !
0
Accepted Solution
-
See how you've made an impact in Zyxel Community this year!
0
All Replies
-
Hi @kyssling
Could you provide the reproduced procedures to us?
Which VPN connection method you used on your Windows 10 PC? L2TP or SSL VPN?
BTW, if that would impact your VPN service, you could inactivate the IDP signature 1139379 temporarily.
See how you've made an impact in Zyxel Community this year!
0 -
Hello, very thanks for fast answer, i try it on monday or wednesday (when user is on our Lan, from home he is connect to VPN without problem) and write feedback.
1 -
Hello, sorry for delay, but external worker have holiday ...
Today i try VPN connection and connect to external VPN is running without any problem.(She use PPTP protocol)So I search on IDP : [type=Sig(1139379)] EXPLOIT PPTP Echo Request Buffer Overflow (CVE-2003-0213) and NONE found...
Can you confirm that this signature is deleted on IDP update 3.2.4.269/3.2.4.270 ?
(on IDP to 3.2.4.268 this signature exist)
Thanks Vaclav
0 -
See how you've made an impact in Zyxel Community this year!
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 146 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight