UTM profile and policy direction
Options
@Zyxel_Charlie
after reading this answer i'm confused - does direction (from/to) in policies matters for applying UTM profiles? Let's say we setup IDP rule against RDP bruteforcing and applied it to policy from lan1 to wan, it will be triggered when:
after reading this answer i'm confused - does direction (from/to) in policies matters for applying UTM profiles? Let's say we setup IDP rule against RDP bruteforcing and applied it to policy from lan1 to wan, it will be triggered when:
- someone from lan tries to bruteforce remote RDP
- someone from wan attacks RDP server inside lan1
- or in both of above?
0
All Replies
-
Hi @CB1,
In your example if we create a security policy rule from LAN to WAN and assign an IDP rule to that, it will be triggered only for someone from LAN tries to bruteforce remote RDP (option a).
Security policy rules depends on the initiator of a session.
Thus, if you want better protection for your network you can consider creating rules for each possible directions.
Example;
Moreover, in addition to IDP, other UTM features are recommended in best practice to prevent web threats.
1- Anti-Malware
2- Email Security
3- Reputation Filter
4- Sandboxing
Best regards.0
Categories
- All Categories
- 383 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 76 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 890 Nebula FAQ
- 415 Security FAQ
- 233 Switch FAQ
- 203 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight