What Can Go Wrong; How To Detect And Prevent Tcp Port Scanning With Adp - ZyXEL Communications ZyWALL 110 Handbook
Zywall/usg series security firewalls
Hide thumbs
Also See for ZyWALL 110:
- User manual (1090 pages) ,
- Handbook (749 pages) ,
- Handbook & instructions (255 pages)
Table of Contents
Advertisement
Go to the ZyWALL/USG Monitor > Log, you will see [notice] log message such as below. In this
2
example result, a connection from executive_1 has user login message and always with ACCESS
FORWARD information. A connection from employee address (192.168.30.9) and some of the
services are with ACCESS BLOCK information
Figure 116 Monitor > Log
3.3.4 What Can Go Wrong?
If you are not be able to configure any UTM policies or it's not working, there are two possible
1
reasons:
You have not subscribed for the UTM service.
1a
You have subscribed for the UTM service but the license is expired.
1b
You can click the link from the CONFIGURATION > Licensing > Registration screen of your
ZyXEL device's Web Configurator or click the myZyXEL.com 2.0 icon from the portal page
portal.myzyxel.com/) to register or extend your UTM license.
3.4 How To Detect and Prevent TCP Port Scanning with
ADP
This is an example of using a ZyWALL/USG ADP (Anomaly Detection and Prevention) Profile to
protect against anomalies based on violations of protocol standards (RFCs – Requests for
Comments) and abnormal traffic flows such as port scans.
Figure 117 ZyWALL/USG with ADP Profile Setting Example
Chapter 3 Protect Your Network with UTM
ZyWALL/USG Series User's Guide
63
(https://
Advertisement
Table of Contents
