Securepoint Support Forum

Hi All,

I have config Securepoint with 3 zone (External, Internal and DMZ)

My Problem is ssh service remain all Internal segment permit service in sshd/22 port.

I already create ACL from
- Securepoint Security Manager
- Network
- Firewall Properties (IP Address : 192.168.175.100/32)

But users with IP 192.168.175.10 allow remote ssh to Securepoint Appliances Box/192.168.175.1

Can't any help me.....

Thanks,
GNU/Linux

Hi,

the zone "internal" grants all IPs on this interface, access to the firewall. The only way to avoid this, is to change the zone from "internal" into "dmz2". Of course you need to change all your network objects.

If you like the name of the zone "internal", you can add a zone according to this.

- Connect to the FW via putty and user "admin"
- Add a zone ;
1. "add zone internal2"
2. "add zone firewall-internal2"
- Press reload in the manager

Now you can change the zones, mind of changing the networkobjects .