[NEBULA] How can I allow RDP through when using IDP prevention

PBE
PBE Posts: 8
First Comment
edited April 2021 in Nebula
When I enable Intrusion prevention, RDP traffic is blocked.  Is there a rule list where I can make an exception?

All Replies

  • ivers
    ivers Posts: 45
    First Comment First Answer Friend Collector Fifth Anniversary
     Freshman Member
    @PBE
    That's weird..  I didn't have this issue when RDP to the internet.
    What's your direction, from WAN to LAN or?


  • PBE
    PBE Posts: 8
    First Comment
    Terminal Server is on network with RDP port forwarded by NSG100.  If NSG100 has IDP Detection box checked, remote TS users can connect.  Once the IDP Prevention box is checked, incoming RDP connections are blocked.
  • Zyxel_Chris
    Zyxel_Chris Posts: 599
    Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate 50 Answers 500 Comments
     Guru Member
    Hello @PBE
    You can create the firewall rule for the exception.
    Action "allow" From source "any or specific IP" to destination "RDP IP" Dst port "RDP service port"
    Hope it can help you out. :)

    /Chris
    Chris
  • PBE
    PBE Posts: 8
    First Comment
    Thanks Chris, but if i understand things correctly, once the NAT port forwarding is in place, it automatically creates the firewall rule in the NSG100.  The port forwarding and firewall configuration works perfectly when the "Prevention" feature of IDP is off so the firewall is letting the traffic through  I only have the problem when "Prevention" is on. 
  • Zyxel_Chris
    Zyxel_Chris Posts: 599
    Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate 50 Answers 500 Comments
     Guru Member
    Hello,
    The IDP will not check the firewall rule which you have create it manually, could you please give it a try and feel free to let me know if still not work, thanks. =)

    /Chris
    Chris
  • PBE
    PBE Posts: 8
    First Comment
    It worked, thanks

Nebula Tips & Tricks