Remote management from a specific fixed ip

Options
AndreasC
AndreasC Posts: 11  Freshman Member
First Anniversary First Comment
edited April 2021 in Security
Can u please list the steps to allow remote management from a specific Fixed external ip.
USG60

Thanks
Andreas

All Replies

  • PeterUK
    PeterUK Posts: 2,754  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    Options
    Make a address object for the given IP then add a Policy control with from WAN to ZyWALL with source being your given IP object.
  • AndreasC
    AndreasC Posts: 11  Freshman Member
    First Anniversary First Comment
    Options
    Thanks Peter for the reply, all good there.
    I have another question if u do not mind, is there way to lock down the admin account only to be
    accessible from the internal ethernet network 192.168.xxx.xxx  but not when i connect via wifi.

    BR
    Andreas
  • PeterUK
    PeterUK Posts: 2,754  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    Options
    In system > WWW you can lock it down to a given IP

  • AndreasC
    AndreasC Posts: 11  Freshman Member
    First Anniversary First Comment
    Options
    So if i want to restrict  my admin account to access all the functions only via the available Lan interfaces  I  create 2 rules -> zone: Lan1_subnet and Address: ALL and Lan2_subnet and Address: ALL  with both to have action as accept, and then  change the default rule to Zone: All , Address: ALL to deny ?
    Sorry i am double checking but i do not want to lock myself out 
    Andreas
  • PeterUK
    PeterUK Posts: 2,754  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    Options
    Yes I think you get it but you can't change the default rule which is why you make a rule for deny but backup your config.

    You also need a rule for zone wan if your going to connect remotely. 

Categories

Security Highlight


Read more

Security Help Center

EnglishTiếng ViệtРусскийไทย中文(台灣)