XG Firewall DPI

Hi,

dpi will not work with http scanning enabled, that will give the proxy. Also be aware that the current dpi does not scan udp traffic. All those fields should be blank except default policy or similar.

piano

Thanks for your prompt reply but it's seems you misunderstood. This screenshot was taken from a training video however in my case Malware scanning section is completely missing int the rule creation screen

Please upgrade to v18.5.3

ian

That screenshot is from 17.5.

DPI mode was added in 18.0 and the firewall rule screen reorganized.

Scroll till you see "Web Filtering" and then click on it to expand it.  There you can select "Scan HTTP and decrypted HTTPS".  In that section if the "Use web proxy instead of DPI Engine" is selected it will use the Proxy.  If it is unchecked it will use DPI mode.