Cyberoam offers a great way of controlling how the device is
accessed, from which zone, what type of access, what type of services it offers…etc.
To access (Appliance Access) page, simply go to: System, Administration, Appliance Access.
Let’s take a look at the below picture for example, the
client has two Vlans (Vlan 10 and Vlan 20), the other zones are pre-configured
in Cyberoam. Let’s say that you want to allow Cyberoam to be accessed from the
zone (Vlan20) using https access mode only, simply click on the tick next to Vlan20
zone, under HTTPS (Admin Services). If you left the other zones unticked, then
whenever you try to access Cyberoam from Vlan10 or any other zone, the browser
will keep searching for the entered URL and nothing will be displayed.
From my humble experience in network security and Cyberoam, I
recommend allowing access to Cyberoam from LAN zone, using HTTPS access mode only.
And to be able to access Cyberoam when you’re out of the office, you can allow
HTTPS access for the zone VPN. This means that when you connect to your Company’s
Network using the SSL VPN Connection, you can log in to Cyberoam and do any modifications
or upgrades needed, such as the firmware upgrade – which should not be carried
out during working hours hopefully - I will cover this topic in a future post.
I recommend not to tick any mark under HTTP access for any
zone.
I will cover each service separately in a different post with
more screen shots.
Thank you
Best Regards
Abed Jaber
No comments:
Post a Comment