Welcome, Guest. Please login or register.
Did you miss your activation email?
Friday 27 December 2024, 09:39:05 pm

Login with username, password and session length

Visit the Official Endian Reference Manual  HERE
14262 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  Firewall Option "allow" vs. "allow with IPS"
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Firewall Option "allow" vs. "allow with IPS"  (Read 20371 times)
arminf
Full Member
***
Offline Offline

Posts: 56


« on: Sunday 30 May 2010, 11:50:46 pm »

Help me understand...

Every Firewall Rule can be set with 2 Different Security Option

"ALLOW" -> means scan for Anti Virus
"ALLOW with IPS" -> scan with Anti Virus  PLUS use SNORT IPS

Does this switch work for you?

Example:
InterZone Firewall
Green to Green is set to "Allow" so no SNORT should be used.
This does not work for me. As long as i use IPS on in Service option the "allow" button does include IPS.
But when is disable IPS service the Green to Green speed is normal and about 50/60MB instead of 5/7 MB

Green to Green is my LANside. IPS should only scan cross connections. Green to Blue, Green to Red, Red to Everywhere.
Not inside the Networks (green/green, Blue/blue)

How do you configure your InterZone or SNORT to get internal speed?

Any hint?

thanks Gents!

Logged
Thilo
Jr. Member
*
Offline Offline

Posts: 4


« Reply #1 on: Wednesday 02 June 2010, 11:48:34 pm »

same issue...
Logged
arminf
Full Member
***
Offline Offline

Posts: 56


« Reply #2 on: Thursday 03 June 2010, 02:14:08 am »

Thx Thilo!

Anybody else has this issue?

You should feel it when you copy a bunch of data through your networks.

DMZ to LAN, LAN to DMZ, WLAN to LAN, LAN to WLAN, WLAN to DMZ, DMZ to WLAN

You can disable IPS and check the speed
then enable and check the speed

After check your FW option and set to allow and NOT allow with IPS.
When you copy now your result is same as in case 2.

Could somebody please test this case. this drives me mad...

Any help is highly appreciated!!!!!

THANKS GENTS!
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.047 seconds with 17 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com