Why does an SF_CB_IP-related security policy appear in the event log?
Zyxel_Jeff
Posts: 1,298 
Zyxel Employee
Zyxel Employee
Question :
Why is there an SF_CB_IP-related security policy event log? For instance, the source IP 10.10.123.33 was blocked by the security policy"SF_CB_10.10.123.33".
However, there is no security policy called "SF_CB_10.10.123.33".
Answer :
The event log message 'SF_CB' stands for Security Firewall_Client Block. The reason why IP 10.10.123.33 was blocked by the 'SF_CB_10.10.123.33' rule is that the user added the client 10.10.123.33 to the Block List. The user can navigate to Site-wide > Clients > Show policy clients to verify this.
If the user wants to allow the client 10.10.123.33 to access the internet again, they can change the client's status to 'Normal.
Tagged:
0
Categories
- All Categories
- 415 Beta Program
- 2.5K Nebula
- 152 Nebula Ideas
- 102 Nebula Status and Incidents
- 5.8K Security
- 305 USG FLEX H Series
- 283 Security Ideas
- 1.5K Switch
- 77 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.5K Consumer Product
- 255 Service & License
- 396 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.7K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 87 About Community
- 77 Security Highlight