Forums

Subscribe via email Subscribe via email
Subscribe via rss
Guest
or Ask a Question
Add a reply View Replies (6) →
mihai
mihai
Offline

Filtering DMZ content zone

Resolved
0 votes
HI,

My configuration si simple:
WAN - external ip
LAN - 192.168.x
DNZ - another external ip

In DMZ i will have a LAMP server + mail.

The question is : The traffic to DMZ it's filtered by IDS/IPS ?

Thank you
In Intrusion Detection and Prevention
Monday, April 14 2014, 07:56 AM
Subscribe via email
Share this post:
Responses (6)

  • Accepted Answer

    mihai
    mihai
    Offline
    Wednesday, April 16 2014, 11:55 AM - #Permalink
    Resolved
    0 votes
    Thanks for the reply
    This makes sense.
    The reply is currently minimized Show

  • Accepted Answer

    Nick Howitt
    Nick Howitt
    Offline
    Wednesday, April 16 2014, 11:53 AM - #Permalink
    Resolved
    0 votes
    Network->Firewall-> Egress Firewall

    Note they are different in concept. The incoming firewall affects traffic entering ClearOS destned for the server. It is normally closed by default to new traffic (but not to return traffic initiated by ClearOS) and then you raise exceptions (e.g. OpenVPN). Outgoing traffic initiated from ClearOS is allowed by default. The Egress firewall works on traffic from the LAN to the WAN. By default it is Open but its default behaviour can be changed. Again any return traffic initiated from the LAN is normally allowed.
    The reply is currently minimized Show

  • Accepted Answer

    mihai
    mihai
    Offline
    Wednesday, April 16 2014, 11:28 AM - #Permalink
    Resolved
    0 votes
    Hi,

    Thank you for the reply.
    By limiting the outgoing traffic i mean : As we have on the : Network->Firewall-> Incoming Firewall is there a way to limit the outgoing too?

    I use the community version.
    The reply is currently minimized Show

  • Accepted Answer

    Nick Howitt
    Nick Howitt
    Offline
    Wednesday, April 16 2014, 11:21 AM - #Permalink
    Resolved
    0 votes
    I don't know about IDS/IPS filtering. Have a look at /ert/snort.conf to see what it is picking up for HOME_NET.

    What do you mean by limit the outging traffic? Are you talking about bandwidth limiting, QoS or blocking/allowing specific destinations.
    The reply is currently minimized Show

  • Accepted Answer

    mihai
    mihai
    Offline
    Wednesday, April 16 2014, 06:59 AM - #Permalink
    Resolved
    0 votes
    anyone?
    The reply is currently minimized Show

  • Accepted Answer

    mihai
    mihai
    Offline
    Monday, April 14 2014, 12:21 PM - #Permalink
    Resolved
    0 votes
    Another question: how can i limit the outgoing traffic from LAN and DMZ ?

    Thank you
    The reply is currently minimized Show
Your Reply