Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Sonicwall TZ100: what to change on default settings + qos on rdp?

Posted on 2014-02-05
2
Medium Priority
?
745 Views
Last Modified: 2016-11-23
Hi,

I have 2 questions on my Sonicwall TZ100 (Dell now):

1.what best practise changes would you do to default settings? Have some rules, policies but didn't change much to deafault settings

2.Can you set priority on specific protocols, f.e. I would like to have RDP absolute priority over SMB traffic. Cannot put it into KB or MB but copying files should not interfere with RDP.

J.
0
Comment
Question by:janhoedt
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
2 Comments
 
LVL 26

Accepted Solution

by:
Blue Street Tech earned 2000 total points
ID: 39837343
Hi janhoedt,

To address your first question, it really depends on what you are wanting to do. The defaults are pretty much Best Practice already. However, there are many hardening techniques you can apply as a Best Practice as well but they are very lengthy.

A few of the major ones would be as follows:
Firewall Settings > Advanced:
Check both Enable Stealth Mode & Randomize IP ID.
Under IP and UDP Checksum Enforcement check both Enable IP header checksum enforcement &  Enable UDP checksum enforcement.

Purchase CGSS and configure each module.

To answer your second question, yes you can prioritize Access Rules and NAT Policies. Click on the Priority to set higher or lower.

Let me know if you have any other questions!
0
 
LVL 26

Expert Comment

by:Blue Street Tech
ID: 39845760
Glad I cloud help. .. Thanks for the points!
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

704 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question