Block snpm from outside
Dear community,
my service Provider is reporting to me our router has an
"open simple network management protocol"
They asked to close the port because of possible DDoS-Reflection-Attacks.
I tryed to close it by adding a security policy:
from: WAN
to: Zywall
IPv4 Source: any
IPv4 Destination: any
Service: SNMP_UDP
User: any
Shedule: none:
Action: deny
but this does not take any effect.
Can anybody give me advise how to close the Port? Our System is the ZyWALL 110.
Thanks in advance.
my service Provider is reporting to me our router has an
"open simple network management protocol"
ip address: www.xxx.yyy.zzz source_port: 161 ServiceName: snmp asn: 3209 TransportProtocol: udp sysdesc: ZyWALL 110 sysname: zywall-110
They asked to close the port because of possible DDoS-Reflection-Attacks.
I tryed to close it by adding a security policy:
from: WAN
to: Zywall
IPv4 Source: any
IPv4 Destination: any
Service: SNMP_UDP
User: any
Shedule: none:
Action: deny
but this does not take any effect.
Can anybody give me advise how to close the Port? Our System is the ZyWALL 110.
Thanks in advance.
0
Accepted Solution
-
Try to disable SNMP or add a rule "deny" in service control.
0
All Replies
-
Try to disable SNMP or add a rule "deny" in service control.
0 -
Try to modify your security police indicated above :
From : any
to : WAN
IPv4 Source: any
IPv4 Destination: any
Service: SNMP_UDP
User: any
Shedule: none:
Action: deny
I Think your router is trying to communicate to the outside (your service provider)0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 148 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight