Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 5 replies
  • Answers 2 answers
  • Subscribers 28 subscribers
  • Views 18472 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Do I enable Lan to Wan Intrusion Prevention in default network policy

JacobRodriguez

I am still new to UTM's.

Should I select Lan to Wan Intrusion Prevention in my default lan-to-wan allow all policy?

Lan-towan- IPS confuses me a little bit because I just think of IPS preventing attacks from the outside to inside and not inside to outside.

Thanks



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to sachingurung

    The Lan_Wan rule is already configured....I just need to add it to the policy correct?

    Also, should have I have another rule to black all from Wan_Lan and also have Wan_Lan IPS enabled? 

  • 0 in reply to JacobRodriguez

    Hi, 

    Yes add IPS policy to the LAN_WAN rule. You do not require a separate WAN_LAN rule, LAN_WAN rule will inspect the incoming response packets and take action.

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to sachingurung

    Sorry to bring up an old thread, but I'm a little confused by this and couldn't find it by search. In IPS policies there is actually a policy for WAN-LAN but it's greyed out I'm assuming because it's not editable. delete'able. Where does one see that this policy is being applied to WAN-LAN traffic? Assuming it's not, and that the LAN-WAN rule which is on by default is the preloaded method of blocking WAN-LAN intrusions? Thanks

  • 0 in reply to apalm123

    Hi,

    those policies are basically templates for you to use to build your own.

    The WAN to LAN policy is editable, little symbol on the far righthand side.

    You use the WAN to LAN policy if you have your own server or external originating traffic being allowed into your network.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

Cookie Information Banner