Monitoring the Security Zone Status
Context
The Qiankun Shield device's odd-numbered ports (in the untrust zone) are used to connect to upstream devices, and even-numbered ports (in the trust zone) are used to connect to downstream LAN devices. If the upstream and downstream connections are incorrect, threat event notification and display on Huawei Qiankun will be affected.
Huawei Qiankun determines the probability of reverse connection of the uplink and downlink interfaces on the Qiankun Shield devices based on the IPS and CDE events aggregated in the last 24 hours. For example, if the probability of the CDE event is 100%, it indicates that the uplink and downlink interfaces on the Qiankun Shield devices are 100% connected in reverse.
Huawei Qiankun provides the checking result to the security operations experts who determine whether the interfaces are connected in reverse based on the IPS and CDE events. If so, a message is displayed on this page, indicating that the device security zones are connected in reverse.
Procedure
- Log in to the Huawei Qiankun console, and choose
> My Services > Border Protection and Response. - Click Services in the menu bar, and choose IP Security Zone from the navigation tree.
- Check the device card in the Device Security Zone area.
If tenants see a message indicating that ports in the device security zones are reversely connected, it indicates the cables are incorrectly connected to the Qiankun Shield devices. In this case, tenants need to exchange the uplink and downlink interface connection on the local Qiankun Shield devices.
Figure 1 Device security zones reversely connected
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
