Portblocking - better via policy system or better via ENS

Discussion for beta versions of WinGate

Portblocking - better via policy system or better via ENS

Postby sigih. » Sep 20 11 4:39 am

Hello all,

next question ...
Is it better (more efficient) to block certain ports (10-20 different ports) via policy system or via ENS ?
Security should be the same - or ?
On the policy system I've a little statistic in % - but it this the only difference ?

greetz.
sigih.
sigih.
 
Posts: 46
Joined: May 19 09 8:43 pm
Location: Telfs / Austria ... middle of the Alps ...

Re: Portblocking - better via policy system or better via EN

Postby adrien » Sep 20 11 9:35 pm

Hi

It's more efficient to block in ENS.

It's also more effective. Since blocking traffic in policy happens after the ENS notifies the engine of the new connection, usually about 1 packet has been sent before the connection is shut down by the engine.

On the other hand, blocking in policy gives you a lot more flexibility for who to block.

Adrien
adrien
Qbik Staff
 
Posts: 5217
Joined: Sep 03 03 2:54 pm
Location: Auckland


Return to WinGate Beta

Who is online

Users browsing this forum: No registered users and 1 guest