IDP activation

2»

All Replies

  • osake_li_09
    osake_li_09 Posts: 9
    First Comment Friend Collector First Anniversary
    @kyssling, yes, I inactive all the RDP items and remaining item are all actived, then I perform TeamViewer over VPN.
  • kyssling
    kyssling Posts: 107  Ally Member
    First Comment First Answer Friend Collector Sixth Anniversary
    edited April 2022
    Very thanks for answer, if you use Remote Desktop Client (Windows) you can have checked RDP items on IDP ? (I think you have unchecked because you using TeamViewer ...)  ?
  • kyssling
    kyssling Posts: 107  Ally Member
    First Comment First Answer Friend Collector Sixth Anniversary
    Hello, I activate IDP into profile - I have all items activated, we use RDP only via VPN.
    But I have zero "Total Session Scanned" value - is that okay ?
    Thank you for answer !
     
  • Zyxel_James
    Zyxel_James Posts: 718  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate 100 Answers
    Hello @kyssling,
    May I see your security policy rule of the IDP profile? and also your test scenario. Or provide your configuration through private message and I will check on this for you.
    Thank you.

    James
  • Rix
    Rix Posts: 21  Freshman Member
    First Comment Friend Collector SurveyFeedback-2022-Nov First Anniversary
    edited November 2023

    Hello, I have ATP200 and creating a new rule does not have the profile option for IDP.
    Just App Patrol, Content Filter and SSL Inspection. The rules for IDP are updated to the latest,
    but I have never seen a hit, suspect because the profile is not available to be loaded.
    Not shown below is From: Wan

    Zyxel-IDP.png
  • Zyxel_Emily
    Zyxel_Emily Posts: 1,417  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 1000 Comments

    Hi @Rix,

    IPS (IDP) has no profile. It is global setting with the button "Enable". You don't have to apply IPS (IDP) to security policy rule.

    You can use Allow List to add signatures to exclude incoming packets with signatures on the allow list from being intercepted and inspected. You can also use IP Exception to bypass IPS (IDP) based on the packet’s source or destination address.

    image.png image.png
  • PhilippeB
    PhilippeB Posts: 18  Freshman Member
    First Comment Friend Collector First Anniversary

    The ATP and USG FLEX series have the possibility to have all the security services linked to one or more security policies. The Zyxel Online Web Help describes it in detail:

    image.png image.png

    After this is done, the IPS screen looks like this and IPS can be set to policy-based inspection:

    image.png

    Now it's possible to link IPS to policies from WAN to LAN only:

    image.png

    Unfortunately, this functionality is not currently planned for the new H series. It looks as if Zyxel has simply forgotten this function, which considerably simplifies the overview in compex scenarios.

  • Zyxel_James
    Zyxel_James Posts: 718  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate 100 Answers

    @PhilippeB As I stated here, this feature is supported on uOS currently. I already moved it to the ideation section for further evaluation.

    https://community.zyxel.com/en/discussion/19573/usg-flex-h-models-security-services-by-policy

Categories

Security Help Center

EnglishTiếng ViệtРусскийไทย中文(台灣)