Results 1 to 4 of 4

Thread: Bypass IPS

  1. #1
    Newbie
    Join Date
    May 2019
    Posts
    3

    Default Bypass IPS

    Hello,

    I'm currently attempting to bypass inbound Cloudflare connections from triggering the DOS rule. I have the following in IPS and a similar rule in Bypass.

    cloudflare-ut.PNG

    However; neither rule appears to work. The only solution I found was to disable the DOS signature number. Preventing DOS is a major reason to use IPS and this solution is not ideal.

    Thoughts / solutions?

  2. #2
    Untangler jcoffin's Avatar
    Join Date
    Aug 2008
    Location
    Sunnyvale, CA
    Posts
    8,729

    Default

    Using IPS to prevent DDoS is like saving the Titanic with a bucket. Once the DDoS overwhelms your bandwidth there is nothing your firewall can do to prevent it. What you are seeing is false positives.
    Attention: Support and help on the Untangle Forums is provided by
    volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  3. #3
    Newbie
    Join Date
    May 2019
    Posts
    3

    Default

    Completely agree that it will only work sometimes based on several factors. 10GB pipe, 1GB DDos ... everything is relative. Point is that if we want it in our architecture it should work.

  4. #4
    Master Untangler cblaise's Avatar
    Join Date
    Jul 2014
    Location
    Burlington, VT
    Posts
    138

    Default

    Bypass/whitelisting IPS networks is not possible in 14.1 but will be in 14.2.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2