How to allow anydesk through usg40 firewall
All Replies
-
HI @Tushar
I suppose the log is: "abnormal TCP flag attack detected, Drop"This issue occurs when the device receives packets with:
(1) ALL TCP flags bit are set at same time.
(2) SYN, FIN bits are set at same time.
(3) SYN, RST bits are set at same time.
(4) FIN, RST bits are set at same time.
(5) Only FIN bit is set.
(6) Only PSH bit is set.
(7) Only URG bit is set.
Therefore, the device detects and regards these packets as attacks.
If you are sure these packets are safe, you can log into the device and enter the following CLI commands to disable this detection:
Router(config)# secure-policy abnormal_tcp_flag_detect deactivate
Regards0 -
Hi @Tushar,
With default configuration, Anydesk is not blocked by USG.
PC2 can access PC1 by Anydesk successfully without extra firewall or NAT settings.
PC2------Internet------(WAN)USG40(LAN)------PC1(Anydesk)
If there are lots of "abnormal TCP flag attack detected, DROP" logs, you can follow the instruction from Alfonso to enter the CLI command to disable/enable abnormal tcp flags detect.
Disable detect: secure-policy abnormal_tcp_flag_detect deactivate
Enable detect: secure-policy abnormal_tcp_flag_detect activate
For example:
Router(config)# secure-policy abnormal_tcp_flag_detect deactivate
Router(config)# write
Router(config)# show secure-policy status
secure-policy status: yes
secure-policy asymmetrical route status: no
secure-policy default rule: deny, log
secure-policy tcp flag detect: no
0
Categories
- All Categories
- 390 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 51 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 914 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 211 Service & License
- 332 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 879 Nebula FAQ
- 414 Security FAQ
- 220 Switch FAQ
- 194 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 61 Security Highlight