VPN50 Firewall Default Config

I have a question about the default policy "WAN to Zywall" which by default is enabled and allowing all traffic. Is there any reason why I should keep this enabled if I have higher level policies allowing the incoming traffic I need? What will happen if I disable it?

Accepted Solution

  • Zyxel_Jeff
    Zyxel_Jeff Posts: 1,206  Zyxel Employee
    100 Answers 500 Comments Friend Collector Fourth Anniversary
    Answer ✓

    Hi @RonAllen

    Yes, as PeterUK mentioned, the default WAN_to_Device security policy allows VPN-related traffic to enter the firewall.


    Don't miss this great chance to upgrade your Nebula org. for free! https://bit.ly/4g2pS9L

All Replies

  • PeterUK
    PeterUK Posts: 3,326  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary

    It mostly there for allowing VPN

  • Thanks for your reply Peter. So there is minimal risk for denying incoming traffic for this rule.

  • Zyxel_Jeff
    Zyxel_Jeff Posts: 1,206  Zyxel Employee
    100 Answers 500 Comments Friend Collector Fourth Anniversary
    Answer ✓

    Hi @RonAllen

    Yes, as PeterUK mentioned, the default WAN_to_Device security policy allows VPN-related traffic to enter the firewall.


    Don't miss this great chance to upgrade your Nebula org. for free! https://bit.ly/4g2pS9L

Security Highlight