more Policy Route
mslagmolen
Posts: 5 Freshman Member
Currently we can only configure 20 Policy Routes.
i would like to add more than 20 policies.
i would like to add more than 20 policies.
0
Comments
-
Hello @mslagmolenCould you please share the detail information about your application, we can learn more and fulfill your request./Chris
0 -
Hi Chris,
i've uploaded a screenshot of the policy routes.
We need more than 20 policies in this segment.0 -
Hello @mslagmolen
Thanks for your information, I noticed that you have specify the source port but in normal case the client usually use the random port as the source to connect with server, is there any special needed in your application?
BTW, just remind we still support CIDR in policy route, for instance if there are 2 subnet 172.16.192.0/24 and 172.16.193.0/24 you can sort it to 172.16.192.0/23 in this case it can help to use 1 rule include 2 subnet, hope it can help before the enhancement.
/Chris0 -
Hi @Nebula_Chris
The problem is that we have different client devices that need different access to the network.
So we've got several RDP ports we need to open and other specific port to specific IP adresses.
If i look at the normal USG units we can create allot of port-forwardings, open port and port redirections but i miss these kind of basic settings or are the NSG units created for small offices up to 5 clients? because 20 policies aren't allot to be honest.0 -
Hi @mslagmolen
I assume you have the RDP servers which located NSG LAN site and client will access via the internet, if it is the case you actually don't need the policy route just simply set the virtual server at Gateway>Firewall>NAT.
Hope this is what you want, let me know if any needed.
/Chris0 -
Hi @Nebula_Chris
That does work but we cannot define UDP or TCP with the virtual server.
And we can with the Policy route but 20 policies isn't enough
Most Firewall give you the option to define all rules like you would like to, as does the new ATP firewall. But the NSG firewall is quite basic in terms of firewall policies and options you have.
I would like to see a more advanced setting menu for firewall policies and or rules.0 -
Hello @mslagmolen
Thanks for your feedback, understand what your require, the concept of NSG series is plug and play for the beginner, hence it still have the place to enhance and we have did it on every release patch.
We'll evaluate it, so stay tuned.
/Chris0 -
Hi @mslagmolen
We already have the request to add protocol settings (TCP/UDP) in the virtual server rules and we will implement it this year possibly.
Once having this released, would you still need to set more policy routes?
Seems your need can be achieved only using virtual server and no need to create multiple policy route rules
Let us know your thoughts! Thanks0 -
Hey @mslagmolen
The option to support TCP/UDP selection in virtual server rules is now available on the new Nebula interface. Feel free to try it out! ?
0 -
Hey @mslagmolen
Forgot to update you here but I guess you already know :)
The policy route entries is now supported according to the NSG device model:
NSG50:50
NSG100:100
NSG200:200
NSG300:300
Hope this are great news for you ?
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 149 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 263 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight