[2025 May Tips & Tricks] Blocking AI Risks Before They Spread — App Patrol Now in Action

Zyxel_Avani

Recent reports from South Korea allege that DeepSeek has been transmitting user data to servers in China and the U.S., raising further concerns about its security. To help mitigate potential cybersecurity risks posed by generative AI applications like DeepSeek, Nebula’s App Patrol now supports the ability to restrict its usage—offering organizations a safer and more controlled digital environment. You can tailor App Patrol profiles based on IP addresses, time schedules, users, or user groups. This article walks you through the deployment process.

Configuration Steps

👉 Create an App Patrol Profile

• Go to Configure > Firewall > Security Service, and click +Add to create a new App Patrol profile.

• Enter a Profile Name.
• Select the Category (e.g., Social Network).
• Enter the Application Name (e.g., Deepseek).
• Click Create to save the profile.

👉 Apply the App Patrol Profile in a Security Policy

• Navigate to Configure > Firewall > Security Policy, and click +Add to create a new rule.
• Enter a Policy Name, select Allow from the Action drop-down menu, select the app patrol profile name and set protocol, source IP, destination IP, dst port, user, schedule.

⭐ Verification

• Try accessing the blocked application (e.g., Deepseek) from a test device. The connection attempt should be blocked.
• To confirm, go to Monitor > Firewall > Event Log, where you should see log entries indicating the App Patrol rule was triggered.

With Application Patrol in place, you can proactively control app usage and strengthen your organization's security posture with ease.