This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Does Global IPS Setting need to be Internal or External?

When I setup this whitebox with 7.305, it is showing External (Network) in the Local Networks box under the Network Security->Intrusion Protection->Global Tab. Is that correct? Shouldn't it be sniffing traffic on the external interface? Or does it sniff the passed traffic after it passes all other filters? If so, this would seem to be counter intuitive if someone is trying to penetrate your box and it drops all the suspicious packets you may not know in time to prevent a successful attack.

I am a noob at this and I know its probably painfully obvious. I was just confused.

Thanks,
isildur

This thread was automatically locked due to age.

Parents

0 BAlfson over 16 years ago

No, the Global tab asked for your 'Local networks'. You likely will only have 'Internal (Network)' in there although you might have 'DMZ' if you have one, or other internal networks.

In my experience, havine 'External (Network)' in that box causes the CPU to go over 100% once there's a little load on the box.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 isildur over 16 years ago in reply to BAlfson

Thanks for the tip!

BTW, is there a page somewhere with example configuration for whiteboxes? I have googled and browsed the Astaro site and I think I am missing something. [:)]

Thanks,
isildur
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 isildur over 16 years ago in reply to BAlfson

Thanks for the tip!

BTW, is there a page somewhere with example configuration for whiteboxes? I have googled and browsed the Astaro site and I think I am missing something. [:)]

Thanks,
isildur
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Vulcan over 16 years ago in reply to isildur

A sample or walkthrough guide would be nice....
Cancel
Vote Up 0 Vote Down

Cancel