Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 37 subscribers
  • Views 3222 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Grundkonfiguration der UTM

ChristianBy

Guten Morgen zusammen,

ich habe einige Anfänger Fragen zu dem Thema Firewall (Bzw. Die Frage ist ist das was ich im folgenden Beschreibe vernünftig oder habe ich da Quatsch eingestellt?):

  1. Firewall ich habe die Firewall eingerichtet mit folgender Regel: 
      Internal (Network) -> Portweiterleitung (443 und 1119) -> IPv4 / IPv6
      Internal (Network) -> Any -> IPv4 / IPv6
  2. Folgende NAT Regel
      Internal (Network) -> WAN
  3. Intrusion Prevention
      Internal (Network)
        Richtlinie: Unbemerkt verwerfen
        Neustart-Richtlinie: Alle Pakete verwerfen
  4. Webfilter
      Zugelassene Netzwerke Internal (Network) = Standardmodus
  5. Transparenzmodus-Ausnahmen:
      Hier habe ich einen Fernseher und die Amazonbox eingetragen da sonst Netflix nicht geht. Ist das Sinnvoll?

Welchen Weg gibt es um sich zu dem Thema Netzwerksicherheit weiterzubilden?

Danke



This thread was automatically locked due to age.
Parents
  • 0

    Hallo Christian,

    (Sorry, my German-speaking brain isn't creating thoughts at the moment. [:(])

    Please show pictures of the Edits of the rules you describe above.

    Note that Transparenzmodus-Ausnahmen only apply in Transparent mode.  In Standard mode, you must skip the Proxy in the browser's Proxy Settings.

    MfG - Bob (Bitte auf Deutsch weiterhin.)

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Firewall:

     

    NAT:

     

    Intrusion Prevention 

     

    Webfilter

     

    Filteroptionen

  • 0 in reply to ChristianBy

    Thanks, Christian, that's helpful.

    Firewall rule #2 is not needed as #1 already allows the traffic.

    Since Web Filtering is in Standard mode, the 'Transparenzmodus-Ausnamen' do not apply.  Since it's unlikely that the "AmazonBox" and "Fernseher Wohnzimmer" are configured to use the Proxy in Standard mode, I suspect that their traffic passes directly out with your firewall rule #1.  You can confirm what I'm saying by looking at the Web Filtering log.

    Unless you have internal devices that the outside world reaches via a NAT rule, you're probably as well protected as you want to be.

    MfG - Bob (Bitte auf Deutsch weiterhin.)

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0 in reply to ChristianBy

    Thanks, Christian, that's helpful.

    Firewall rule #2 is not needed as #1 already allows the traffic.

    Since Web Filtering is in Standard mode, the 'Transparenzmodus-Ausnamen' do not apply.  Since it's unlikely that the "AmazonBox" and "Fernseher Wohnzimmer" are configured to use the Proxy in Standard mode, I suspect that their traffic passes directly out with your firewall rule #1.  You can confirm what I'm saying by looking at the Web Filtering log.

    Unless you have internal devices that the outside world reaches via a NAT rule, you're probably as well protected as you want to be.

    MfG - Bob (Bitte auf Deutsch weiterhin.)

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML