08-02-2023 06:55 AM
We only have IPsec tunnels on the firewall.
08-03-2023 02:47 AM
Actually it is a bit more than only protecting about flooding attacks.
In the ZP, you can set some protection against port scanning (reconnaissance attacks), you can drop some improper packets (that may sometimes affect applications, but that's rare).
Anyway, in today's Internet, ZP protection is a must-have (I think it is also a best practice to enable it).
The configuration of it ... it is up to everyone's requirement I guess.
Olivier
PCSNE - CISSP
Best Effort contributor
Check out our PANCast Channel
Disclaimer : All messages are my personal ones and do not represent my company's view in any way.
08-02-2023 10:23 PM
Hello @Kandarp_Desai
The zone/DoS protections are there to save your firewall resources from traffic flooding.
If you think that there won't be any flooding in your network, then you do not need to enable them.
08-03-2023 02:47 AM
Actually it is a bit more than only protecting about flooding attacks.
In the ZP, you can set some protection against port scanning (reconnaissance attacks), you can drop some improper packets (that may sometimes affect applications, but that's rare).
Anyway, in today's Internet, ZP protection is a must-have (I think it is also a best practice to enable it).
The configuration of it ... it is up to everyone's requirement I guess.
Olivier
PCSNE - CISSP
Best Effort contributor
Check out our PANCast Channel
Disclaimer : All messages are my personal ones and do not represent my company's view in any way.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
