USG Flex 200 Blocking with Application Patrol blocks everything
Options
thwartedEfforts
Posts: 10 
Freshman Member
Freshman Member
Hello all. I'm trying to block individual app traffic, but instead all traffic seems to trigger whatever Application Patrol rules I create.
What I'm using via NCC:
Zyxel USG FLEX 200 V5.30(ABUI.0)
Firewall🡒Configure🡒Security service
In the Application Patrol box tap the +Add button
Added an example profile for preconfigured app Twitter, as below
Tap the Create then Save to update the config
Firewall🡒Configure🡒Security policy
In the Security policy box tap +Add
Configured the new policy called SF_TWITTER using the profile created in the step above, as below
For Source I'm using lan1_192.168.5.0/24
For Destination I'm using Any
Action left as Allow here so log only
No other rules defined other than implicit allow and deny
Tap the Save button to update the config
My assumption at this point would be that only traffic matching the define app (i.e. Twitter) will trigger the policy rule. What happens is ALL traffic hits it and is logged
What am I missing? Thanks in advance.
What I'm using via NCC:
Zyxel USG FLEX 200 V5.30(ABUI.0)
Firewall🡒Configure🡒Security service
In the Application Patrol box tap the +Add button
Added an example profile for preconfigured app Twitter, as below
Tap the Create then Save to update the config
Firewall🡒Configure🡒Security policy
In the Security policy box tap +Add
Configured the new policy called SF_TWITTER using the profile created in the step above, as below
For Source I'm using lan1_192.168.5.0/24
For Destination I'm using Any
Action left as Allow here so log only
No other rules defined other than implicit allow and deny
Tap the Save button to update the config
My assumption at this point would be that only traffic matching the define app (i.e. Twitter) will trigger the policy rule. What happens is ALL traffic hits it and is logged
What am I missing? Thanks in advance.
0
All Replies
-
Duplicate thread. Replacement:
https://community.zyxel.com/en/discussion/13577/usg-flex-200-application-patrol-content-filtering-policy
I'm guessing this was held in a moderation queue, but without notification of that fact I assumed it had been deleted. This thread is safe to delete.0
Categories
- All Categories
- 385 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 75 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 908 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 886 Nebula FAQ
- 415 Security FAQ
- 228 Switch FAQ
- 200 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 63 Security Highlight
