Firewall allow access for user Radius
I use a local user database, I want to use authentication in the radius of the service. In firewall policies, I can use a user from a local database. Can I use users from radius in firewall rules?
I use USG310, Windows NPS (Radius) + Active directory users.
Exemple print screen, local users:
I use USG310, Windows NPS (Radius) + Active directory users.
Exemple print screen, local users:
0
All Replies
-
@Denis
If you want to create the firewall profile for radius user, Go to User/group, and fill the value on the group identifier which is in the RADIUS server indicates the attribute value:
The value must be the same as the RADIUS server's setting.
0 -
I need to give access personally for a specific user to a specific ip on a specific port.Example:from: 192.168.0.2To: 192.168.1.2User: User123Service: 3389
As I understand it, I can’t manage the firewall policies so flexibly using the radius service?
When using rsa on the zywall side and authentication by login and password, the user’s login and password remain virtually the only protection, brute force attack possible, is there any way to protect against this?0 -
@Denis
The radius user can be controlled by security policy. The rule you mentioned can be worked, however, the 192.168.0.2 and 192.168.1.2 need to locate in different lan subnet.
Also,you can limit the source IP which can only access to zywall to protect against.0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 147 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight