I got a one year subscription of the UGS services. I would like to use the AntiVirus and IDP. I went ahead and licensed all services.
AntiVirus:
I created a profile under UTM Profile->AntiVirus. Left the defaults
Under Security Policy-> Policy Control I edited my "my general Internet service" rule, and checked AV and selected the above profile.
"my general Internet service" includes HTTP(S), FTP(S), SMTP(S), time,..
I am assuming Antivirus makes only sense on the SMTP(s), FTP(S) service? HTTP as well? Would it make sense to enable on other services as well?
IDP:
Similar to above I created an IDP profile. I selected the "all" default profile. I enabled the IDP profile for "my general Internet services" and an inbound NAT port forward rule. Frankly, I am not sure what best practices I should follow for IDP. Does it make sense on all services?
↧