VPN50 Firewall Default Config

RonAllen
RonAllen Posts: 9
First Comment First Anniversary Friend Collector
in Security

I have a question about the default policy "WAN to Zywall" which by default is enabled and allowing all traffic. Is there any reason why I should keep this enabled if I have higher level policies allowing the incoming traffic I need? What will happen if I disable it?

Accepted Solution

  • Zyxel_Jeff
    Zyxel_Jeff Posts: 1,163  Zyxel Employee
    Third Anniversary 100 Answers 500 Comments Friend Collector
    Answer ✓

    Hi @RonAllen

    Yes, as PeterUK mentioned, the default WAN_to_Device security policy allows VPN-related traffic to enter the firewall.

    Default_Allow_WAN_To_Zywall.png


    Untitled Image

    Don't miss this great chance to upgrade your Nebula org. for free! https://bit.ly/4g2pS9L

All Replies

  • PeterUK
    PeterUK Posts: 3,118  Guru Member
    Community MVP 2500 Comments Sixth Anniversary 100 Answers

    It mostly there for allowing VPN

  • RonAllen
    RonAllen Posts: 9
    First Comment First Anniversary Friend Collector

    Thanks for your reply Peter. So there is minimal risk for denying incoming traffic for this rule.

  • Zyxel_Jeff
    Zyxel_Jeff Posts: 1,163  Zyxel Employee
    Third Anniversary 100 Answers 500 Comments Friend Collector
    Answer ✓

    Hi @RonAllen

    Yes, as PeterUK mentioned, the default WAN_to_Device security policy allows VPN-related traffic to enter the firewall.

    Default_Allow_WAN_To_Zywall.png


    Untitled Image

    Don't miss this great chance to upgrade your Nebula org. for free! https://bit.ly/4g2pS9L

Categories

Security Highlight


Read more

Security Help Center

EnglishTiếng ViệtРусскийไทย中文(台灣)