Feature request: more frequent GeoIP database updates
Options
Guru Member
All Replies
-
Update after going online-reboot.I currently do not know if the "storage" where the GeoIP db is stored is:
- wiped or kept before reboot
- accessible from both firmware images (or as security feature, replicated in both images)
so if is needeed to reboot for whatever reason (firmware update, configuration rollback for instance?) I have no assurance I will capable of certify that the securty policies will be enforced as intended since the reboot with correct and updated data about the geoIP correlation.Also, allowing a scripted and/or a more frequent "check for update" of the geoIP db could restrict the timeframe of the staleness of the geoip data.As far as i know there's no "expected day" as for Microsoft patches for GeoIP updates. So if my device updates only monday at 5:am CET and the update of the db occours tuesday at 1 AM CET i'll have for six days the GeoIP db not fully updated with the modification published during tuesday.0 -
in general, the place for the update of the geo-ip database is not logical.why is it not under licencse -> signature update, as all other signatures also?and I agree with @mMontana, firmware update are a "problem", since they include all the signatures from the build time of the firmware. in worst case you are running for about 1 week with very old signatures.0
Zyxel Employee
Ally Member
Categories
- All Categories
- 442 Beta Program
- 2.9K Nebula
- 219 Nebula Ideas
- 127 Nebula Status and Incidents
- 6.5K Security
- 588 USG FLEX H Series
- 344 Security Ideas
- 1.7K Switch
- 84 Switch Ideas
- 1.4K Wireless
- 52 Wireless Ideas
- 7K Consumer Product
- 298 Service & License
- 476 News and Release
- 91 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.8K FAQ
- 34 Documents
- 87 About Community
- 102 Security Highlight
