UTM profile and policy direction
@Zyxel_Charlie
after reading this answer i'm confused - does direction (from/to) in policies matters for applying UTM profiles? Let's say we setup IDP rule against RDP bruteforcing and applied it to policy from lan1 to wan, it will be triggered when:
after reading this answer i'm confused - does direction (from/to) in policies matters for applying UTM profiles? Let's say we setup IDP rule against RDP bruteforcing and applied it to policy from lan1 to wan, it will be triggered when:
- someone from lan tries to bruteforce remote RDP
- someone from wan attacks RDP server inside lan1
- or in both of above?
0
All Replies
-
Hi @CB1,
In your example if we create a security policy rule from LAN to WAN and assign an IDP rule to that, it will be triggered only for someone from LAN tries to bruteforce remote RDP (option a).
Security policy rules depends on the initiator of a session.
Thus, if you want better protection for your network you can consider creating rules for each possible directions.
Example;
Moreover, in addition to IDP, other UTM features are recommended in best practice to prevent web threats.
1- Anti-Malware
2- Email Security
3- Reputation Filter
4- Sandboxing
Best regards.0
Categories
- All Categories
- 347 Beta Program
- 2.1K Nebula
- 115 Nebula Ideas
- 77 Nebula Status and Incidents
- 5K Security
- 44 USG FLEX H Series
- 246 Security Ideas
- 1.2K Switch
- 64 Switch Ideas
- 900 WirelessLAN
- 33 WLAN Ideas
- 5.8K Consumer Product
- 204 Service & License
- 326 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.8K FAQ
- 832 Nebula FAQ
- 401 Security FAQ
- 219 Switch FAQ
- 190 WirelessLAN FAQ
- 45 Consumer Product FAQ
- 136 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 71 About Community
- 61 Security Highlight