Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsJob BoardISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Equipment Support » Hardware By Brand » ZyXEL » Zywall 2+ Attack Detection
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
ZyWALL 2WG and Huawei E630 3G card setup »
« ZyWall 35 to ZyWall 35 VPN  
AuthorAll Replies


bbarrera
Premium,MVM
join:2000-10-23
Sacramento, CA
clubs:

reply to dslpartner
Re: Zywall 2+ Attack Detection

Sure but we all know a simple nmap port scan doesn't cause a DoS attack. More serious are the false positives in zw2/5/35/70 family that luckily are not see in zw1050/USG300 family. The number of false positives and immediate blocking are why I disable LAN on Security > Firewall > Threshold for zw2/5/35/70 firewalls.
to forum · permalink · · 2008-07-18 12:26:17 · Reply to this

dslpartner

join:2005-02-18

 I am not familiar what actually triggers a portscan attack false positive, but you can use a portscan to create problems and if it does its considered a DoS.

I agree that the tresholds on the ZyWALLs are to low, but its a stretch to say the device is not doing its job, albeit not 100% correctly its still trying to do the tasks stowed upon it within the parameters that are programmed for it.

The question is, can you change the settings to fit your expected behaviours or is this hardcoded somewhere. And can we get ZyXEL to help us tune it to our personal likings.
--
"Perl is executable line noise, Python is executable pseudo-code."
to forum · permalink · · 2008-07-18 13:14:18 · Reply to this


bbarrera
Premium,MVM
join:2000-10-23
Sacramento, CA
clubs:		 its an issue of control. I didn't say the firewall isn't doing its job, the issue is "ALL OR NOTHING" as you have no real control.
to forum · permalink · · 2008-07-18 13:31:30 · Reply to this
-
Forums » Equipment Support » Hardware By Brand » ZyXELZyWALL 2WG and Huawei E630 3G card setup »
« ZyWall 35 to ZyWall 35 VPN  

Friday, 21-Nov 04:21:26 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 9 years online! © 1999-2008 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [198] Obama FCC Selection Team Won't Make AT&T Happy
· [102] DSL's Not Dead Yet
· [79] Zone Alarm Pro Free Just For Today
· [78] Harvard Law Professor Sues RIAA
· [67] New Xbox 360 'Experience' Goes Live
· [66] CRTC Rules Against Indie ISPs In Throttling Dispute
· [51] Cable Grabbing 71% Of New Broadband Customers
· [49] Storm Reviews Come Rolling In
· [48] Comcast DOCSIS 3.0 Hits Pacific Northwest In December
· [44] Comcast Offers 'Bare Bones' 768kbps VoIP Double Play
Most people now reading
· CRTC ruling coming Thursday Nov 20 [TekSavvy]
· Rocky - time to offer VPN service to all your customers [TekSavvy]
· Big Oil should bail out the Big 3, not us! [General Questions]
· [Config] Question about QoS Priority and Policing [Cisco]
· Service problems at multiple VoIP providers today? [VOIP Tech Chat]
· Extjs grid combo box. [Webmasters and Developers]
· Official news from TekSavvy regarding the CRTC descision [TekSavvy]
· Dumping Bell Home Phone Because Of CRTC ruling [TekSavvy]
· Pentagon Hit by Unprecedented Cyber Attack [Security]
· Very close to switching to Teksavvy but doubts [TekSavvy]