[NEBULA] How can I allow RDP through when using IDP prevention

PBE
PBE Posts: 8
edited April 2021 in Nebula
When I enable Intrusion prevention, RDP traffic is blocked.  Is there a rule list where I can make an exception?

All Replies

  • ivers
    ivers Posts: 42  Freshman Member
    @PBE
    That's weird..  I didn't have this issue when RDP to the internet.
    What's your direction, from WAN to LAN or?


  • PBE
    PBE Posts: 8
    Terminal Server is on network with RDP port forwarded by NSG100.  If NSG100 has IDP Detection box checked, remote TS users can connect.  Once the IDP Prevention box is checked, incoming RDP connections are blocked.
  • Zyxel_Chris
    Zyxel_Chris Posts: 518  Zyxel Employee
    Hello @PBE
    You can create the firewall rule for the exception.
    Action "allow" From source "any or specific IP" to destination "RDP IP" Dst port "RDP service port"
    Hope it can help you out. :)

    /Chris
    Chris
  • PBE
    PBE Posts: 8
    Thanks Chris, but if i understand things correctly, once the NAT port forwarding is in place, it automatically creates the firewall rule in the NSG100.  The port forwarding and firewall configuration works perfectly when the "Prevention" feature of IDP is off so the firewall is letting the traffic through  I only have the problem when "Prevention" is on. 
  • Zyxel_Chris
    Zyxel_Chris Posts: 518  Zyxel Employee
    Hello,
    The IDP will not check the firewall rule which you have create it manually, could you please give it a try and feel free to let me know if still not work, thanks. =)

    /Chris
    Chris
  • PBE
    PBE Posts: 8
    It worked, thanks

Nebula Tips & Tricks