e_mano_e  Freshman Member

@Zyxel_Cooldia This problem still exists! I just installed Trellix Endpoint Security and my ATP100 log says this: Virus infected SSI:N Type:Anti-Malware Signature Virus:Trojan.GenericKD.c42558a9 File:McAfee_Common_x64.msi Protocol:HTTP Under "Monitor" - "Anti-Malware" a Virus name is listed but no Hash value. Because of…

<<Are you blocked during an update or download?>> Normal update that Trellix does periodically in the background.

@Zyxel_James 1. The complete message of the log Sorry. The log is already cleared. It seems that the ATP100 log space is a bit small. 2. A screenshot of Anti-Malware Statistics. ( Monitor > Security Statistics > Anti-Malware. It would also be helpful if this screen would show a) the virus name and b) which file the virus…

@Notarmic: How have you reported the problem to the antimalware manufacturer? Is there a special website available where one can report false positives?

@Zyxel_Cooldia McAfee shows version numbers for each module installed. McAfee Data Exchange Layer: Version 6.0.3.646 McAfee Agent: Version 5.7.6.251 McAfee DLP Endpoint: Version 11.6.500.172 McAfee Client Proxy: Version 4.4.056 McAfee Endpoint Security Plattform: Version 10.7.0.3460 McAfee Adaptiver Bedrohungsschutz:…

This vulnerability mainly affects only systems where WAN access to the administrative web interface is enabled, right? If WAN access is disabled, there is not much risk to my firewall for now, right? I'm just asking to make sure how fast I have to apply the firmware patch.

@Zyxel_Jeff: Thanks, but this will reject VPN traffic from USA only. And I do not want to add 100 countries to the GeoIP-Group. Will it also work if I create a GeoIP-Group with 3 or 4 countries that are allowed and then create the same policy rule with "Action=allow". When the policy rule explicitely allows VPN traffic for…

@Fred_77 Sounds good. But where do I find the white list?

@Zyxel_Dick your explanation would be a great addition for the Zyxel Web Online Help.

@Langaber Client-to-site. @mMontana hat schon Recht. Mein genannter Link/die PDF erklärt site-to-site. Ich hatte das dann wohl abgewandelt bei der Konfiguration. In der ATP Konfiguration ist "Remote Access (Server Role)" die richtige Einstellung. 

Es gibt auf der Shrewsoft Website eine Anleitung. Die ist zwar in Bezug auf eine USG, passt aber auch für die ATP. Mit Hilfe der Anleitung habe ich Shrewsoft zum Laufen gebracht. Hier der Link: https://www.shrew.net/support/Howto_ZywallUsg

&#13;Is CES part of the ATP100 license? Or do I have to purchase CES as a separate license? Jens

That's exactly the same for me but I wanted to configure some custom spam lists for incoming emails. Thanks so far. Jens

Oh, I never thought about this in detail. But than the Email Security feature of the ATP is completely unuseable. Or am I wrong? All email traffic should always be done using a SSL/TLS encrypted way. Jens

I just read in the Zyxel Online Web Help the following: The Zyxel Device’s email security feature checks SMTP (TCP port 25) and POP3 (TCP port 110) emails by default. You can also specify custom SMTP and POP3 ports for the Zyxel Device to check. My Mailserver is configured to use POP3 on port 995. That should be reason why…