Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 27 subscribers
  • Views 6541 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Which firewall rules should IPS policies be applied to for a basic home user?

shred

I just got Sophos XG V17-MR1 installed last night to replace my old router. My setup is Internet Modem -> Sophos XG (DHCP) -> Cujo (IPS/IDS) -> Apple Airport Time Capsule (Wireless AP) and I’m using the default firewall rule that is created which allows LAN to WAN traffic. I’d like to start utilizing the IPS that Sophos XG offers and the IPS policy I’m looking to use is the “lantowan general” that it automatically comes with. Right now, I just have the IPS policy applied to my default firewall rule (LAN to WAN) but I’m wondering if this will cover traffic coming in from the internet to my network. Would it be better to create a new firewall rule that has ANY for the source and destination so the IPS policy is applied to ALL traffic (both inbound/outbound)? Any advice on the best way to implement IPS policies for a home user would be great!



This thread was automatically locked due to age.
Parents
  • +1

    Welcome aboard,

    I use the XG 17 firewall at home.  I use the default rule for outgoing connections with the "lantowan_strict" rule and I have not had any issues.  This will cover connections that are initiated from the LAN (by you).  If you want to also permit connections initiated from the internet (WAN) you'll need at add specific rules for each type of connection.  You should only need to do this if you are hosting a web server or you are setting up a VPN.

    J4F

  • 0 in reply to just4fun

    Thanks for the reply! On the same topic, is there any explanation on the differences between the "LAN TO WAN", "lantowan_general", and "lantowan_strict" policies?

Reply Children
No Data