D-Link DFL-260 Product Manual - Page 324
IDP > IDP Rules > Add > IDP Rule, Service, Protect against insertion/evasion attacks
UPC - 790069296802
View all D-Link DFL-260 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 324 highlights
6.5.8. SMTP Log Receiver for IDP Events the firewall on the WAN interface as illustrated below. Chapter 6. Security Mechanisms An IDP rule called IDPMailSrvRule will be created, and the Service to use is the SMTP service. Source Interface and Source Network defines where traffic is coming from, in this example the external network. The Destination Interface and Destination Network define where traffic is directed to, in this case the mail server. Destination Network should therefore be set to the object defining the mail server. Command-Line Interface Create an IDP Rule: gw-world:/> add IDPRule Service=smtp SourceInterface=wan SourceNetwork=wannet DestinationInterface=dmz DestinationNetwork=ip_mailserver Name=IDPMailSrvRule Specify the Rule Action: gw-world:/> cc IDPRule IDPMailSrvRule gw-world:/IDPMailSrvRule> add IDPRuleAction Action=Protect IDPServity=All Signatures=IPS_MAIL_SMTP Web Interface Create an IDP Rule: This IDP rule is called IDPMailSrvRule, and applies to the SMTP service. Source Interface and Source Network define where traffic is coming from, in this example, the external network. The Destination Interface and Destination Network define where traffic is directed to, in this case the mail server. Destination Network should therefore be set to the object defining the mail server. 1. Go to IDP > IDP Rules > Add > IDP Rule 2. Now enter: • Name: IDPMailSrvRule • Service: smtp • Also inspect dropped packets: In case all traffic matching this rule should be scanned (this also means traffic that the main rule set would drop), the Protect against insertion/evasion attacks checkbox should be checked, which is the case in this example. • Source Interface: wan • Source Network: wannet • Destination Interface: dmz 324