Scribd Logo
Upload

Welcome to Scribd!

  • How To Set Zone Defense V2

    Uploaded by

    Bomba Rolo
    33 views12 pages
    ZoneDefense is a proprietary solution from D-Link. It operates with D-Link switches to isolate infected hosts. It uses Threshold Rules to examine connections through the firewall.

    Original Description:

    Original Title

    How to Set Zone Defense V2

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    ZoneDefense is a proprietary solution from D-Link. It operates with D-Link switches to isolate infected hosts. It uses Threshold Rules to examine connections through the firewall.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    33 views12 pages

    How To Set Zone Defense V2

    Uploaded by

    Bomba Rolo
    ZoneDefense is a proprietary solution from D-Link. It operates with D-Link switches to isolate infected hosts. It uses Threshold Rules to examine connections through the firewall.

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 12

    D-Link Security

    ZoneDefense

    1
    D-Link Security

    Setup Examples
    ZoneDefense

     If there’s an infected host spreading worm into the network. D-Link Firewalls implement
    ZoneDefense feature to
     Firewall can stop the malicious traffic flooding to other
    subnets but have no way to stop it infecting its network perform proactive network
    [Subnet A]. security with D-Link switches

     The most effective solution will be: Firewall triggers the ACL
    in LAN switches to perform real time filtering on any malicious
    traffic.

    Sets ACL to block specific DMZ WAN


    MAC or IP address

    Firewall
    DES-3x26S
    Subn DES-3350SR
    et B
    DES-3250TG
    Subn
    et A DES-3500 series
    DES-3800 series
    Subn
    et C
    xStack series
    Infected Host
    2
    D-Link Security

    Setup Examples
    ZoneDefense

    • ZoneDefense is a proprietary solution from D-Link. It operates


    with D-Link switches to isolate infected hosts that are generating
    unusual traffic on LAN.
    • It uses Threshold rules to examine connections through the
    firewall and take actions upon them. The threshold rules monitor
    the number of connections per second.
    • When a pre-defined limit is reached, the firewall sends block
    requests to the switches configured for ZoneDefense.

    3
    D-Link Security

    Setup Examples
    ZoneDefense
    INTERNET

    WAN1
    192.168.174.70/24

    LAN1 IP: 192.168.1.1/24

    Block HTTP requests


    DGS-3324SR for every host if it exceeds
    192.168.1.250/24 4 sessions per second

    PC
    PC

    4
    D-Link Security

    Setup Examples
    ZoneDefense

    Setting up ZoneDefence in the firewall to control the


    ACL in a ZoneDefence aware switch.

    Configuration Steps:

    • Configure the switch.


    • Exclude the switch and Administrator’s PC.
    • Create and configure the Threshold rules.

    5
    D-Link Security

    Setup Examples
    ZoneDefense

    Verify communication between the firewall and the switch.


    Check the SNMP community in the switch.
    Command: “show snmp community”

    6
    D-Link Security

    Setup Examples
    ZoneDefense

    Go to Objects > Address Book > Interface Addresses.


    Create two new objects for the switch and for the administrator’s PC.

    7
    D-Link Security

    Setup Examples
    ZoneDefense

    Go to Zone Defense > Switches.


    Add a new switch and specify the model of the switch.
    Set the correct SNMP community string. Check connectivity with the
    switch.

    8
    D-Link Security

    Setup Examples
    ZoneDefense

    Go to Zone Defense > Exclude.


    Add a new entry and select the Switch IP and the Administrator’s PC IP.

    9
    D-Link Security

    Setup Examples
    ZoneDefense

    Go to Traffic Management > Threshold Rules. Create a new threshold


    rule. Select the required service and interfaces then click OK button.
    Create a threshold action required. Set the desired threshold
    (connections per second). Enable Use ZoneDefense and click OK button.

    10
    D-Link Security

    Setup Examples
    ZoneDefense

    Save and Activate the new configuration.

    11
    D-Link Security

    Setup Examples
    ZoneDefense

    Firewall ZoneDefense status:

    12

    You might also like