USG110 ip-exception
JaapHoetmer
Posts: 3 Freshman Member
in Security
Hello,
I am trying to set up ip-exception on a USG110, but the commands listed in the CLI reference are not available on the device.
https://www.zyxel.ch/de/support/download/205152/, chapter 45.
Running firmware version is 4.73, the CLI reference covers v4.10-4.60.
The first command to enable this should be
security-service ip-exception <profile_name>
however, the command security-service isn't even available.
Can anybody shed some light on this?
Your help is much appreciated.
Kind regards,
Jaap
0
All Replies
-
@JaapHoetmer
The design of USG is a little bit different with ATP/USG FLEX.
USG does not support IP exception feature.
But you can create a security policy to bypass security check of a specific source IP/destination IP on USG.
1. Create address object, for example object name is SOURCE_IP, DESTINATION_IP
2. Insert a secure policy rule on the top with the first priority order,
secure-policy insert 1name RULE01sourceip SOURCE_IPdestinationip DESTINATION_IPaction allow0 -
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 148 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight