USG Flex 200 Blocking with Application Patrol blocks everything

thwartedEfforts
Posts: 10
Freshman Member



Hello all. I'm trying to block individual app traffic, but instead all traffic seems to trigger whatever Application Patrol rules I create.
What I'm using via NCC:
Zyxel USG FLEX 200 V5.30(ABUI.0)
Firewall🡒Configure🡒Security service
In the Application Patrol box tap the +Add button
Added an example profile for preconfigured app Twitter, as below


Tap the Create then Save to update the config
Firewall🡒Configure🡒Security policy
In the Security policy box tap +Add
Configured the new policy called SF_TWITTER using the profile created in the step above, as below

For Source I'm using lan1_192.168.5.0/24
For Destination I'm using Any
Action left as Allow here so log only
No other rules defined other than implicit allow and deny
Tap the Save button to update the config
My assumption at this point would be that only traffic matching the define app (i.e. Twitter) will trigger the policy rule. What happens is ALL traffic hits it and is logged

What am I missing? Thanks in advance.
What I'm using via NCC:
Zyxel USG FLEX 200 V5.30(ABUI.0)
Firewall🡒Configure🡒Security service
In the Application Patrol box tap the +Add button
Added an example profile for preconfigured app Twitter, as below

Tap the Create then Save to update the config
Firewall🡒Configure🡒Security policy
In the Security policy box tap +Add
Configured the new policy called SF_TWITTER using the profile created in the step above, as below

For Source I'm using lan1_192.168.5.0/24
For Destination I'm using Any
Action left as Allow here so log only
No other rules defined other than implicit allow and deny
Tap the Save button to update the config
My assumption at this point would be that only traffic matching the define app (i.e. Twitter) will trigger the policy rule. What happens is ALL traffic hits it and is logged

What am I missing? Thanks in advance.
0
All Replies
-
Duplicate thread. Replacement:
https://community.zyxel.com/en/discussion/13577/usg-flex-200-application-patrol-content-filtering-policy
I'm guessing this was held in a moderation queue, but without notification of that fact I assumed it had been deleted. This thread is safe to delete.0
Categories
- All Categories
- 417 Beta Program
- 2.5K Nebula
- 160 Nebula Ideas
- 108 Nebula Status and Incidents
- 5.9K Security
- 331 USG FLEX H Series
- 286 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 259 Service & License
- 402 News and Release
- 86 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 80 Security Highlight