IDP activation
Hello, I have found that I am missing active IDP setting in the Security Policy. Could someone please advise me, if IDP is generally set in "WAN to LAN" line and just activate IDP?
Should I possibly prepare for the possibility of some non-functional services (RDP ...) after this activation?
Thank you for your help !
0
All Replies
-
What model and firmware version are you using?
0 -
kyssling said:Hello, I have found that I am missing active IDP setting in the Security Policy. Could someone please advise me, if IDP is generally set in "WAN to LAN" line and just activate IDP?Should I possibly prepare for the possibility of some non-functional services (RDP ...) after this activation?Thank you for your help !He ive wintessed this. I have all services activated & licenced but when you create a security policy you can choose ADP, content filter SSL some other one but no IDPI figured i missed some thing, I plan to go back to look at this with more time next week(was a FLEX 200 BTW)
0 -
Hi i use Zyxel USG110 with FW:V4.70(AAPH.0)ITS-WK46-r102519 and mean IDP here ...
0 -
Hi @kyssling,You may create a security rule for the IDP profile that blocks the service from WAN to LAN.If you are concerned that the RDP service will be blocked when IDP is activated. You may edit the Signature Group of the IDP profile, inactivate the RDP service.Or if you are concerned that the other services will be blocked, you can create an IDP profile and set action to "none" and "log" to detect which related service is used, then inactivate the service in the IDP profile.
BR,
James0 -
Hello, someone has it turned on in practice ?
We use only RDP over VPN ... Thank you ...
0 -
Does anyone have experience with checked iDP ? Vaclav
0 -
@kyssling, you may try inactive RDP service in the IDP profile. RDP over VPN is feasible.
0 -
Thank you, and are you use it in a real environment ?
0 -
@kyssling, yes, I have a VPN scenario that connects to USG110 through IPsec VPN, and enables the IDP profile which inactive RDP service. It works.
0 -
Hello osake_li_09,
thanks for answer, If I understand correctly you had to deactivate all RDP items in the IDP settings ...Remaining items are activated ?0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 146 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 250 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight