Chapter 49 Device Insight
ZyWALL Series CLI Reference Guide
443
The security policy LAN2_To_LAN1 uses the parameters in this table.
1 Create a Device Insight profile, for example, clients connected to the Zyxel Device LAN using mobile
phones.
2 Create a new security policy. Name it as LAN2_To_LAN1.
3 Configure the traffic direction for the security policy LAN2_To_LAN1. Add the created Device Insight
profile to the security policy.
4 The Zyxel Device will block clients if they match the settings you configure in the Device Insight profile
and the security policy action is set to deny.
Table 246 Security Policy Configuration Example
TO FROM ACTION DEVICE INSIGHT PROFILE
LAN1 LAN2 deny MobilePhone
Router# configure terminal
Router(config)# device profile MobilePhone
Router(config)# device profile MobilePhone description profile for mobile clients
Router(config)# device profile MobilePhone category
computer gaming-consoles ip-camera media-player
network-storage printer router switch
firewall iot ip-phone mobile-phone-
tablet others projector smart-tv wireless-ap
Router(config)# device profile MobilePhone category mobile-phone-tablet
Router(config)# device profile MobilePhone os
android ios linux macos others windows
Router(config)# device profile MobilePhone os android
Router(config)# device profile MobilePhone os ios
Router(config)# device profile MobilePhone os linux
Router(config)# device profile MobilePhonee os macos
Router(config)# device profile MobilePhone os others
Router(config)# device profile MobilePhone os windows
Router(config)# secure-policy 14
Router(secure-policy)# name LAN2_To_LAN1
Router(secure-policy)# from LAN2
Router(secure-policy)# to LAN1
Router(secure-policy)# device MobilePhone
Router(secure-policy)# action deny
Router(secure-policy)# exit
To Next Page
Loading...
