Outbound SQL traffic (possibly) hitting a zone protection profile

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Outbound SQL traffic (possibly) hitting a zone protection profile

We have a process that sends MSSQL (1433/tcp) to a cloud service that occasionally just stops working - so trust to untrust. It is mostly on 'larger' data transmissions. Turned off all the flood protection in the zone protection profile on the outside interface, and there is no issue.

Can I see where that is being triggered? Any thoughts on changes to thresholds? 

3 REPLIES 3

Cyber Elite
Cyber Elite

Most likely you either hit limits on "Flood Protection" tab or on "Reconnaissance Protection" tab.

 

You can add source IP (where process runs) into "Source Address Exclusion" list on "Reconnaissance Protection" tab.

 

Assuming your internal zone is "INSIDE" you can start the process and then run command "show zone-protection zone INSIDE" to see current rate of Zone Protection counters for the zone.

 

Principal Architect @ Cloud Carib Ltd
Palo Alto Networks certified from 2011

Thank you. I am working with the team having the issue and seeing if it is Flood or Reconnaissance protection I am hitting. Turned off SYN and Other IP on Flood for now. 

Cyber Elite
Cyber Elite

Hello,

I hope that the traffic is over a VPN tunnel? Otherwise youre sending data over the internet in plain text almost.

Regards,

  • 344 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!