Reconnaissance Protection Whitelist

While ports scanning can be used for legitimate network monitoring purposes, it can also be used by attackers to search for an entry point into your network. To prevent such scanning attacks while still allowing you to use port scans, you can configure a source address exclusion whitelist. IPv4 or IPv6 IP addresses added to this whitelist are not blocked by the firewall when performing a port scan or host sweep. Any source address attempting to scan ports on your network are blocked.
  1. Select NetworkNetwork ProfilesZone ProtectionReconnaissance Protection to add a source address exclusion whitelist to your zone protection Profile.
    source_exclusion_whitelist.png
  2. Add an address to your source address exclusion whitelist. You add up to 20 IP addresses or netmask address objects.
    source_exclusion_whitelist_add_address.png

Related Documentation