10-21-2019 06:27 PM
Hi,
I'm on the Security team and was provided the below devices for security evaluation by our network group.
Question for the Zone Based Firewall (ZBFW) on this hardware:
How do you create ZBFW Rules for Direct Internet Access (DIA) in vManage?
These rules could be Inspect or Drop.
Is it even possible?
I have used the Traffic Data Rule Policy settings to test DIA (VPN.0) but the preference is to use ZBFW only and not have to use a hybrid of ZBFW rules that perform proper statefull firewall flows and Traffic Rules that require manual 2 way setup.
Unit 1:
Model: C1111X-8P
Version: 16.10.2
Connectivity: biz-internet (DHCP)
Unit 2:
Model: ISR4331
Version: 16.10.2
Connectivity: biz-internet Static
Thanks,
John
Solved! Go to Solution.
02-24-2020 11:47 AM
02-24-2020 11:47 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide