USG FLEX H models: security services by policy?
The previous ATP and USG FLEX models could be switched to inspection by policy ("secure-policy-style advance") instead of using IP exception to exclude the unwanted services.
The table in Firmware Release Note V1.10 doesn't mention this feature as not yet supported, but I haven't found it nonetheless. Is the function really missing?
Comments
-
Hello @PhilippeB
USGFLEX H firewall also can select the SSL inspection profile by the policy, and IP exception is there too.
I don't quite understand your question, could you rephrase it again? What's the exact feature you asking for in the H series?0 -
I'll explain it with some screenshots. In the previous models it was possible to link each of the security services individually to one or more security policies:
This function makes it much easier to set up complex scenarios and keep a simple overview. Without this function, unneeded or even interfering security services must be laboriously bypassed with quite a number of IP Exception rules. There, the logging options are also limited (e.g. no log alert in IP Exception rules).
With the H series, only these three security services canbe linked individually:
All the other security service like IPS have to be enabled or disabled globally:
This simplified approach may be good for SOHO administrators. In more complex networks, this simplification is counterproductive.
So the question is: will this important function return?
0 -
@PhilippeB Currently, this feature is not in the roadmap for uOS.
I will put this suggestion into ideation for further evaluation.
1 -
When trying to up-vote this, I am getting error : "Category is not configured for ideation"
0 -
I also had the same problem as you, did you fix it?
0 -
Categories
- All Categories
- 300 Beta Program
- 1.9K Nebula
- 103 Nebula Ideas
- 72 Nebula Status and Incidents
- 4.8K Security
- 4 USG FLEX H Series
- 242 Security Ideas
- 1.1K Switch
- 54 Switch Ideas
- 809 WirelessLAN
- 30 WLAN Ideas
- 5.5K Consumer Product
- 178 Service & License
- 309 News and Release
- 69 Security Advisories
- 19 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.3K FAQ
- 567 Nebula FAQ
- 349 Security FAQ
- 118 Switch FAQ
- 147 WirelessLAN FAQ
- 33 Consumer Product FAQ
- 117 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 70 About Community
- 56 Security Highlight