Security¶
Intrusion Prevention (IPS)¶
| Property | Value |
|---|---|
| Mode | Active (block) |
| Scope | WAN + LAN |
IPS is running in active mode — threats are blocked, not just detected.
Honeypot¶
A honeypot is active on 192.168.1.2. Any scan or connection attempt to this IP triggers an alert.
Warning
Do not assign 192.168.1.2 to any real device. It is reserved for the honeypot.
DNS over HTTPS (DoH)¶
All DNS queries are resolved via Cloudflare DoH (https://cloudflare-dns.com/dns-query).
DHCP hands out 1.1.1.1 and 9.9.9.9 to clients, but the UDM intercepts and upgrades resolution to encrypted DoH upstream.
Deep Packet Inspection (DPI)¶
DPI is enabled for traffic classification and bandwidth monitoring.
DNS Filtering¶
DNS filtering is configured but no block lists are currently active.